last executing test programs:

32.053434408s ago: executing program 1 (id=2907):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000080)={[], [{@measure}, {@subj_role={'subj_role', 0x3d, ']'}}]}, 0xff, 0x275, &(0x7f00000006c0)="$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")
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4002, &(0x7f0000000000)={[{@test_dummy_encryption_v1}, {@dioread_nolock}]}, 0x1, 0xbe4, &(0x7f0000003c00)="$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")
mount(0x0, &(0x7f0000000240)='.\x00', 0x0, 0x2200020, &(0x7f0000000000))

31.894524481s ago: executing program 1 (id=2951):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, 0x0, 0x0)
listen(r0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="000001006f9595d6538c6dc80804fa586226a23d71aafd23663ae6610952721f71faa0f9bbbf412166404116aa2b81a0443a169f41457a94c3cc54fe08aab15e489617968f5436df3a99f504fa0088e8b1448974a9b93c6085171af52ad83dc1a0d9db61bc4258ff449644dd8c597ebbcbc361f54e298ca8e5d80a5f64c515683dc72d205fc8529a6f849ee1806cc8d60ce55bbc50c1742c19f75d4d0081b6e6ccfb837bb993d2e941da721d6d88c6ecc94d80a1e22bd8e625"], 0x3, 0x174, &(0x7f0000000480)="$eJzsmD9PwkAYxp9rESJxcMZBE0lEI6UtalxMJPEDmOCfsEGkErSIQgdh85MYv4CLu/GjKJMLo3NN2wNOouKgJsbnN7z3vNe317u3ydOkIIT8W3pPL48XvcaKDmAGaSTk/LM+qtGU+tVssTl3vZ28K9+WdlL3/fH1BADf//rzYwAeCjo8mfv+27vTctyDNtT70LAs9SEEDKnL0HAgtQOBktQnim4G9YZxXHcd46jpVgNhBsEKgh2E/Pj++lcCVWV/Qrne7nRPK67rtH5QTOpfv6BhS9mf+r4GvTGV/lnQYEmdh0BR6k0kBr2JWqKcPxUbra//8vkpKCj+mhj5k38jsKT4U0zxj5zXOM+1O91svVGpOTXnzLbzG+aaaa7budCIoviJ/02H/pRU1p/6oDYu4riseF7LiuIwt6P4nuPGQ//TkFmMciHnVMLvwaxYCIaMLnNCCCGEEEIIIYQQQgj5duYhwr+gE7B3w+rXAAAA//9nP3XZ")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x141a82, 0x0)
r6 = socket$inet6(0xa, 0x80002, 0x0)
ioprio_set$pid(0x2, 0x0, 0x3)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
bind$inet6(r6, &(0x7f0000000200)={0xa, 0x4e20, 0x8, @empty, 0x80ad}, 0x1c)
syncfs(r1)
sendfile(r5, r5, 0x0, 0x4)
connect$unix(0xffffffffffffffff, 0x0, 0x0)

31.004416824s ago: executing program 1 (id=2993):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[@ANYBLOB='N,'], 0x6a)

30.904838597s ago: executing program 1 (id=2997):
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x82, &(0x7f0000000000)={[{@user_xattr}, {@errors_remount}, {@noblock_validity}, {@test_dummy_encryption_v1}], [], 0x3d}, 0xfd, 0x464, &(0x7f0000001600)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1880c20, 0x0, 0x3, 0x0, &(0x7f0000000000))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1000649, &(0x7f0000000600)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x19}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@user_xattr}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noblock_validity}, {@minixdf}, {@journal_checksum}]}, 0x1, 0x60d, &(0x7f0000000800)="$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")
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f00000000c0)='.\x00', 0x84406d, &(0x7f0000000600)=ANY=[], 0x0, 0x0, 0x0)

30.762642092s ago: executing program 1 (id=3005):
r0 = getpid()
setuid(0xee00)
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x68000080)

27.703425667s ago: executing program 1 (id=3054):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x28000600)
r3 = inotify_init1(0x0)
r4 = inotify_add_watch(r3, &(0x7f0000000200)='.\x00', 0x400)
inotify_rm_watch(0xffffffffffffffff, r4)

27.703101621s ago: executing program 32 (id=3054):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x28000600)
r3 = inotify_init1(0x0)
r4 = inotify_add_watch(r3, &(0x7f0000000200)='.\x00', 0x400)
inotify_rm_watch(0xffffffffffffffff, r4)

3.381180395s ago: executing program 2 (id=3365):
r0 = add_key$keyring(&(0x7f0000000780), &(0x7f00000007c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, r0)
keyctl$get_persistent(0x16, 0x0, r0)
keyctl$read(0xb, r0, 0x0, 0x0)

3.38094334s ago: executing program 3 (id=3366):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000100)={@local, @random="429e82211cf8", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x3, 0x7, 0x30, 0x67, 0x0, 0x9, 0x1, 0x0, @remote, @remote}, @time_exceeded={0xb, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x6, 0x7, 0x64, 0xf, 0x6, 0x67, 0x6, @rand_addr=0x64010102, @private=0xa010100}}}}}}, 0x0)

3.380159442s ago: executing program 2 (id=3367):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="10000000040000000800000005"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008900000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r3, r1}, 0x14)
syz_emit_ethernet(0x46, &(0x7f0000000200)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x22}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cabf00", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra}}}}}, 0x0)

3.357789289s ago: executing program 3 (id=3368):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x3)
r1 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0x10001, 0x49, 0x1}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xd, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
syz_emit_ethernet(0x14d, &(0x7f0000000740)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd602a84350117060000000000000000000000000000000000ff02000000000000000000000000000100004e22", @ANYRES32=0x41424344, @ANYBLOB="58c2000090"], 0x0)

3.29934451s ago: executing program 2 (id=3369):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000340)={'syztnl1\x00', 0x0, 0x7, 0x700, 0x5148, 0x10001, {{0xa, 0x4, 0x1, 0x3, 0x28, 0x68, 0x0, 0x6, 0x4, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x33}, {[@generic={0x94, 0xd, "bcb663dc621113c4a50625"}, @ra={0x94, 0x4, 0x1}]}}}}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f0000000300)=0xfffffffd, 0x4)

3.26553542s ago: executing program 5 (id=3370):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r4}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)

3.253538989s ago: executing program 0 (id=3371):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x3, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
connect$netlink(r1, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route(r1, &(0x7f0000000380)={&(0x7f00000001c0), 0xc, &(0x7f0000000340)={&(0x7f0000000040)=ANY=[@ANYBLOB="3400000012000100000000060000000007000000", @ANYRES32=0x0, @ANYBLOB="000000000000000014003500776730"], 0x34}}, 0x0)

3.183239633s ago: executing program 5 (id=3372):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
r5 = socket(0x10, 0x3, 0x0)
close(r4)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x4000000, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x48, 0x2, {{0x3, 0x7, 0x6361, 0x5, 0xffffffff, 0x2000002}, [@TCA_NETEM_SLOT={0x2c, 0xc, {0x2b65, 0x267, 0x0, 0x20000025, 0x19dd, 0x9}}]}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x240080c1}, 0x0)
sendmsg$nl_route_sched(r6, 0x0, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

3.178616456s ago: executing program 0 (id=3373):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00', @ANYRES16=r1, @ANYBLOB="01032757c38d085641a7260000000c000180080003"], 0x20}, 0x1, 0x0, 0x0, 0x24048055}, 0x0)

3.122475747s ago: executing program 5 (id=3374):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x84}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0xa7f10723c5e5444d}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='br_fdb_add\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='br_fdb_add\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000001c000100000000000000000007000000", @ANYRES32=r5, @ANYBLOB="4000aa000a0002"], 0x28}, 0x1, 0x0, 0x0, 0x44800}, 0x0)

3.121882218s ago: executing program 0 (id=3375):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee3, 0x8031, 0xffffffffffffffff, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x94173000)

3.056839917s ago: executing program 5 (id=3376):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fstat(0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0x400454c8, 0x0)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x88bbcfd08703268b, @host}, 0x10)
statx(0xffffffffffffffff, 0x0, 0x6000, 0x1, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x1c, r5, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

3.0205211s ago: executing program 4 (id=3379):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000002000000e27f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000780)={0x2, 0x3, 0x0, 0x3, 0x20, 0x0, 0x70bd2c, 0x25dfdbfc, [@sadb_key={0x2, 0x9, 0x8, 0x0, '\n'}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x34}, 0xfffffffb}}, @sadb_sa={0x2, 0x1, 0x0, 0x4, 0x0, 0x5, 0xc}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x7}}, @sadb_key={0x10, 0x8, 0x388, 0x0, "67328c217950d4ed0ce9fd283e7a39cddf91db11b8d33fe41b6225fa8075fb71275ea059e57dbe5ddb41c0ece4532edb885207438d8c8ccd0b4736f5a7f78c02c158f5c563524df4f34de949509868d522a81cd34a99546e74c7f8725419f8e1af17a281d0f7914e267c1fc4f70fee6200"}]}, 0x100}, 0x1, 0x7}, 0x14)

2.911464738s ago: executing program 4 (id=3380):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r0}, 0x10)
setitimer(0x0, 0x0, 0x0)

2.691098548s ago: executing program 4 (id=3381):
syz_open_dev$loop(&(0x7f00000001c0), 0x1000000000007, 0x28842)
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="646f74732c747a3d5554432c646f74732c6e6f646f74732c636865636b3d7374726963742c666c7573682c6e6f646f74732c6e6f646f74732c71756965742c00a8f43e0a9765c2419bbc93d3bb042cde7dc609bd874b9221aab9404318121ead7505cda193a13e6d2fd30034c9c4f457dc798a67d4d30285c0590475ba33482c83a51b42d7f7ea92b35388ec28309e3b4b8a758575baa63a8679030bf6423a4759c2bb9f9353f43cc4c825234e791353a87ed0bcade85e0808d879b38514fafbba"], 0x1, 0x168, &(0x7f0000000a40)="$eJzs27GK1FAUBuAzJqurNluLRcDGalArS0VWEAOKMoVWCrs2Gxlwmmg1z+AT+GI+gihTTXdFo5OZiDgoMbrzfU0O+RM4t0guJ5Bnl1+eHE1nL6YPF7E/GkV+K4pYjuIgzkQWjXkAAKfJMqX4lFJK5+Zx/l2klIbuCADom/0fAHbPL/f/mwM1BgD0xvwPALvn8ZOn92+X5eGjotiP+DCvJ/WkOTb53Xvl4bXiq4P2rkVdT7JVfr3Js818Ly58y280ebGZn42rV5r8S3bnQdnJL8ZR/8sHAACAnTBeje5r8/3Hdr4fj4vvOvN/U619H+jM73lcyv/eOgCA7c1evzl5XlXHrxT/Q5G3Z96//Qf6UfxQ5FV1vDd8G39cDP1mAvrWPvRDdwIAAAAAAAAAAAAAAPzM7/4hFNn2Fw+9RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOj6HAAA//8nKlEY")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x101042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8000c62)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000000000009500"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close(0xffffffffffffffff)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0800000000000000100000000000000002000000010000000000000000000000ff0f00000000000073b4ffffffffffffffffffffffffffff0000000000000000000000001000000000000000000000200200000000000000ffffffffffff"], 0xb8}}, 0x4004)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@updpolicy={0xb8, 0x14, 0x402, 0x0, 0x0, {{@in6=@local, @in, 0x0, 0x0, 0x1000, 0x0, 0xa, 0x20}, {}, {0x1, 0x6, 0x0, 0xfffffffffffffffe}, 0xfd, 0xffffffff}}, 0xb8}, 0x1, 0x0, 0x0, 0x404c830}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x100002, 0x0, 0x0, 0x0, 0x0)

2.572483254s ago: executing program 3 (id=3382):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfc, 0x20, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
getuid()

2.483361318s ago: executing program 3 (id=3383):
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000040)={0x0, 0x0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xd, 0x0)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000240)=ANY=[], 0x28}], 0x1}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f00000025c0)=ANY=[@ANYBLOB], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
read$eventfd(r5, &(0x7f0000000080), 0x51)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, 0x0)

2.395276726s ago: executing program 2 (id=3384):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)={0x28, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x28}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000180)=@tcp}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)

1.792005673s ago: executing program 5 (id=3385):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
r5 = socket(0x10, 0x3, 0x0)
close(r4)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x4000000, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x48, 0x2, {{0x3, 0x7, 0x6361, 0x5, 0xffffffff, 0x2000002}, [@TCA_NETEM_SLOT={0x2c, 0xc, {0x2b65, 0x267, 0x0, 0x20000025, 0x19dd, 0x9}}]}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x240080c1}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

1.731790949s ago: executing program 0 (id=3386):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfec8d000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000040)={'batadv_slave_1\x00', {0x2, 0x480, @loopback}})
dup3(r4, r5, 0x0)

1.629223889s ago: executing program 3 (id=3387):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='sched_switch\x00', r4}, 0x18)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, 0x0, 0x0)
r6 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$tcp_congestion(r6, &(0x7f0000000300)='reno\x00', 0x5)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r7, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
mmap$xdp(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xb, 0x11, r7, 0x180000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0}, 0x18)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000010c0)=ANY=[@ANYBLOB, @ANYBLOB="200001", @ANYRES32, @ANYBLOB="00020100e022000100"/20], 0x38}, 0x1, 0x0, 0x0, 0x840}, 0x20040010)

1.626905122s ago: executing program 5 (id=3388):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCXONC(r0, 0x4b45, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_int(r1, 0x29, 0x4c, 0x0, &(0x7f0000000080))
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
unshare(0x400)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x541b, &(0x7f0000000000)={<r4=>0xffffffffffffffff, 0x8e59, 0x0, 0x3})
close_range(r4, 0xffffffffffffffff, 0x0)
fdatasync(r2)
timer_create(0x3, 0x0, &(0x7f0000044000)=<r5=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_settime(r5, 0x1, &(0x7f0000000140)={{0x0, 0x3938700}, {0x77359400}}, &(0x7f0000000180))

1.579431674s ago: executing program 4 (id=3389):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @dev, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x88, 0x0, @empty}, {0x0, 0x0, 0x8, 0x0, @gue={{0x2}}}}}}}, 0x0)

1.146321243s ago: executing program 4 (id=3390):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
socket(0x2a, 0x800, 0x2)
socket$kcm(0x10, 0x2, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x27, 0x3, 0x1}, 0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_COALESCE(r2, 0x0, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000000080)=0x4, 0x4)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f00000055c0), 0x400023c, 0x300, 0x0)

1.134704648s ago: executing program 2 (id=3391):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="fc0000001900010000000000fcdbdf2500000000000000000000000000000000fe8000000002000000000000000000bb00000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000004000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000001000000000000004400050000000000000000000000000000000000000000022b0000000a000000fe8000000000000000000000000000aa0000000004"], 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004d00)=[{{0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00)

616.148186ms ago: executing program 0 (id=3392):
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', 0xe02, 0x1c0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
sendfile(r1, r0, 0x0, 0x3a)

615.610942ms ago: executing program 4 (id=3393):
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, 0x0, 0xd4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setresgid(0xee00, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xa, &(0x7f0000000480)=0x47a, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x50, @remote, 0x7}, 0x1c)
setresgid(0x0, 0xee00, 0x0)

615.360984ms ago: executing program 0 (id=3394):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000240)={0x0, 0xffffffffffffff4a, &(0x7f0000000200)={&(0x7f0000000080)={0x18, 0x16, 0xa01}, 0x78}}, 0x0)
recvmmsg$unix(r2, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x2, 0x0)

76.681247ms ago: executing program 3 (id=3395):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x19)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
socket$igmp(0x2, 0x3, 0x2)
quotactl$Q_GETFMT(0xffffffff80000400, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000000)="89070404", 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@remote, @in6=@remote, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc, 0x7}, 0x70bd2a, 0x3504, 0xa, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3801000018"], 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x20008004, 0x0, 0x0)
ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000a80)={{0x2, 0x4e22, @empty}, {0x0, @remote}, 0x48, {0x2, 0x0, @empty}, 'lo\x00'})

0s ago: executing program 2 (id=3396):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0)={[{@delalloc}, {@nombcache}, {@barrier}, {@dioread_lock}, {@stripe={'stripe', 0x3d, 0x8}}, {@resgid}, {@data_err_ignore}, {@jqfmt_vfsv0}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001600)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000d80)='./file1\x00', 0x143042, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f00000000c0), 0xeab2, 0x0)
ioctl(r1, 0x10001, &(0x7f0000000280)="6046595fe0495a64694709e1ccca2471b7b356aaf58931f03c75712ac09a1ab9a8f2ae4d2449c07623c0db0f0ff46fe7236d70312b83225b8b57bd3ca239976ee143ace7a8e6fa4bab35")
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0x40, 0x7fff0000}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r5}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r1)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000340)={'syztnl0\x00', &(0x7f0000000640)={'gretap0\x00', 0x0, 0x7800, 0x80, 0x81, 0x1, {{0x5, 0x4, 0x2, 0x2, 0x14, 0x68, 0x0, 0x3, 0x29, 0x0, @broadcast, @rand_addr=0x64010102}}}})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000004c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000400)={0x0}, 0x1, 0x0, 0x0, 0x20040840}, 0x8044)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$cgroup(0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000100))
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

: 16 bytes leftover after parsing attributes in process `syz.4.913'.
[   58.718694][ T8982] netlink: 51 bytes leftover after parsing attributes in process `syz.2.914'.
[   58.886496][ T9015] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   58.886863][ T9015] syzkaller0: entered promiscuous mode
[   58.886891][ T9015] syzkaller0: entered allmulticast mode
[   58.958322][ T9015] netlink: 2 bytes leftover after parsing attributes in process `syz.4.927'.
[   59.006862][ T9014] tipc: Resetting bearer <eth:syzkaller0>
[   59.015743][ T9014] tipc: Disabling bearer <eth:syzkaller0>
[   59.082569][ T9046] xt_SECMARK: unable to map security context 'system_u:object_r:crond_var_run_t:s0'
[   59.275880][ T9073] netlink: 8 bytes leftover after parsing attributes in process `syz.2.949'.
[   59.281550][ T9076] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   59.283227][ T9076] syzkaller0: entered promiscuous mode
[   59.283245][ T9076] syzkaller0: entered allmulticast mode
[   59.295585][ T9073] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   59.298196][ T9075] tipc: Resetting bearer <eth:syzkaller0>
[   59.306693][ T9075] tipc: Disabling bearer <eth:syzkaller0>
[   59.377258][ T9093] netlink: 'syz.4.960': attribute type 12 has an invalid length.
[   59.378684][ T9093] netlink: 'syz.4.960': attribute type 28 has an invalid length.
[   59.401872][ T9097] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   59.405323][ T9097] syzkaller0: entered promiscuous mode
[   59.406256][ T9097] syzkaller0: entered allmulticast mode
[   59.417448][ T9097] tipc: Resetting bearer <eth:syzkaller0>
[   59.425652][ T9096] tipc: Resetting bearer <eth:syzkaller0>
[   59.431852][ T9096] tipc: Disabling bearer <eth:syzkaller0>
[   59.507203][ T9113] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[   59.520673][ T9113] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   59.556730][ T9115] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   59.557067][ T9115] syzkaller0: entered promiscuous mode
[   59.557094][ T9115] syzkaller0: entered allmulticast mode
[   59.575603][ T9114] tipc: Resetting bearer <eth:syzkaller0>
[   59.589577][ T9114] tipc: Disabling bearer <eth:syzkaller0>
[   59.622193][ T9135] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   59.623183][ T9135] syzkaller0: entered promiscuous mode
[   59.623195][ T9135] syzkaller0: entered allmulticast mode
[   59.629295][ T9135] tipc: Resetting bearer <eth:syzkaller0>
[   59.633030][ T9132] tipc: Resetting bearer <eth:syzkaller0>
[   59.642981][ T9132] tipc: Disabling bearer <eth:syzkaller0>
[   59.744211][ T9153] IPv6: sit1: Disabled Multicast RS
[   59.839348][ T9163] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   59.841115][ T9163] syzkaller0: entered promiscuous mode
[   59.842237][ T9163] syzkaller0: entered allmulticast mode
[   59.848339][ T9162] tipc: Resetting bearer <eth:syzkaller0>
[   59.861058][ T9162] tipc: Disabling bearer <eth:syzkaller0>
[   59.990700][ T9175] xt_NFQUEUE: number of queues (1024) out of range (got 66558)
[   60.100704][ T9191] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.130196][ T9193] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   60.131766][ T9193] syzkaller0: entered promiscuous mode
[   60.132024][ T9193] syzkaller0: entered allmulticast mode
[   60.137226][ T9192] tipc: Resetting bearer <eth:syzkaller0>
[   60.151638][ T9192] tipc: Disabling bearer <eth:syzkaller0>
[   60.334922][ T9220] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   60.336675][ T9220] tipc: Resetting bearer <eth:syzkaller0>
[   60.342052][ T9219] tipc: Disabling bearer <eth:syzkaller0>
[   60.428620][ T9228] syzkaller0: entered promiscuous mode
[   60.428653][ T9228] syzkaller0: entered allmulticast mode
[   60.701137][ T9252] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   60.710161][ T9252] tipc: Resetting bearer <eth:syzkaller0>
[   60.731340][ T9251] tipc: Disabling bearer <eth:syzkaller0>
[   60.974937][ T9283] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   61.044420][ T9289] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   61.046921][ T9289] syzkaller0: entered promiscuous mode
[   61.048028][ T9289] syzkaller0: entered allmulticast mode
[   61.055764][ T9289] tipc: Resetting bearer <eth:syzkaller0>
[   61.057822][ T9288] tipc: Resetting bearer <eth:syzkaller0>
[   61.062408][ T9288] tipc: Disabling bearer <eth:syzkaller0>
[   61.119759][ T9295] syzkaller0: entered promiscuous mode
[   61.119794][ T9295] syzkaller0: entered allmulticast mode
[   61.309531][ T9314] netlink: 'syz.3.1059': attribute type 1 has an invalid length.
[   61.316109][ T9314] bond4: entered promiscuous mode
[   61.316297][ T9314] 8021q: adding VLAN 0 to HW filter on device bond4
[   61.327071][ T9314] 8021q: adding VLAN 0 to HW filter on device bond4
[   61.328574][ T9314] bond4: (slave gre1): The slave device specified does not support setting the MAC address
[   61.330210][ T9314] bond4: (slave gre1): Setting fail_over_mac to active for active-backup mode
[   61.333005][ T9314] bond4: (slave gre1): making interface the new active one
[   61.334201][ T9314] gre1: entered promiscuous mode
[   61.335865][ T9314] bond4: (slave gre1): Enslaving as an active interface with an up link
[   61.416574][ T9329] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.465086][ T9335] netlink: 'syz.2.1067': attribute type 1 has an invalid length.
[   61.508132][ T9335] bond3: (slave ip6gretap1): Enslaving as a backup interface with an up link
[   61.774190][ T9353] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.089365][ T9353] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   62.096409][ T9353] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   62.341388][ T9353] batman_adv: batadv0: Interface deactivated: vxlan0
[   62.418835][ T9372] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   62.420147][ T9373] syzkaller0: entered promiscuous mode
[   62.420163][ T9373] syzkaller0: entered allmulticast mode
[   62.428690][  T232] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   62.428731][  T232] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   62.428763][  T232] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   62.428774][  T232] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   62.428789][  T232] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   62.428797][  T232] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   62.428812][  T232] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   62.428820][  T232] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   62.448049][ T9360] tipc: Resetting bearer <eth:syzkaller0>
[   62.461432][ T9360] tipc: Disabling bearer <eth:syzkaller0>
[   62.474880][ T9389] netlink: 'syz.1.1082': attribute type 1 has an invalid length.
[   62.546023][ T9389] bond3: (slave ip6gretap1): Enslaving as a backup interface with an up link
[   62.615838][ T9407] syzkaller1: entered promiscuous mode
[   62.615873][ T9407] syzkaller1: entered allmulticast mode
[   62.639543][ T9412] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   62.698957][ T9417] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   62.699564][ T9417] syzkaller0: entered promiscuous mode
[   62.699576][ T9417] syzkaller0: entered allmulticast mode
[   62.711468][ T9416] tipc: Resetting bearer <eth:syzkaller0>
[   62.718988][ T9416] tipc: Disabling bearer <eth:syzkaller0>
[   62.763777][ T9425] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[   62.771064][ T9425] syzkaller0: entered promiscuous mode
[   62.772031][ T9425] syzkaller0: entered allmulticast mode
[   62.786325][ T9429] netlink: 'syz.0.1101': attribute type 1 has an invalid length.
[   63.119285][ T9439] __nla_validate_parse: 13 callbacks suppressed
[   63.120399][ T9439] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1104'.
[   63.177550][ T9447] syzkaller0: entered promiscuous mode
[   63.178517][ T9447] syzkaller0: entered allmulticast mode
[   63.186084][ T9447] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1108'.
[   63.334447][ T9466] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1116'.
[   63.398664][ T9479] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   63.399009][ T9479] syzkaller0: entered promiscuous mode
[   63.399020][ T9479] syzkaller0: entered allmulticast mode
[   63.405579][ T9478] tipc: Resetting bearer <eth:syzkaller0>
[   63.409541][ T9478] tipc: Disabling bearer <eth:syzkaller0>
[   63.480686][ T9484] syzkaller0: entered promiscuous mode
[   63.480716][ T9484] syzkaller0: entered allmulticast mode
[   63.491051][ T9484] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1123'.
[   63.510230][ T9486] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1124'.
[   63.598168][ T9500] netlink: 'syz.0.1131': attribute type 1 has an invalid length.
[   63.609846][ T9502] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   63.610278][ T9502] syzkaller0: entered promiscuous mode
[   63.610287][ T9502] syzkaller0: entered allmulticast mode
[   63.617369][ T9501] tipc: Resetting bearer <eth:syzkaller0>
[   63.625429][ T9501] tipc: Disabling bearer <eth:syzkaller0>
[   63.829383][ T9526] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1143'.
[   63.829588][ T9526] bridge_slave_1: left allmulticast mode
[   63.829599][ T9526] bridge_slave_1: left promiscuous mode
[   63.829690][ T9526] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.836971][ T9526] bridge_slave_0: left allmulticast mode
[   63.837219][ T9526] bridge_slave_0: left promiscuous mode
[   63.837322][ T9526] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.930727][   T24] IPVS: starting estimator thread 0...
[   63.978747][ T9544] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1151'.
[   64.013011][ T9536] IPVS: using max 69 ests per chain, 165600 per kthread
[   64.094562][ T9562] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1158'.
[   64.107212][ T9567] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1161'.
[   64.109204][ T9567] netlink: 91 bytes leftover after parsing attributes in process `syz.0.1161'.
[   64.154404][ T9570] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   64.156516][ T9570] tipc: Resetting bearer <eth:syzkaller0>
[   64.159935][ T9569] tipc: Disabling bearer <eth:syzkaller0>
[   64.444725][ T9601] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[   64.505010][ T2427] ieee802154 phy0 wpan0: encryption failed: -22
[   64.506815][ T2335] cfg80211: failed to load regulatory.db
[   64.578460][ T9623] syzkaller1: entered promiscuous mode
[   64.578504][ T9623] syzkaller1: entered allmulticast mode
[   64.759968][ T9633] syzkaller0: entered promiscuous mode
[   64.760006][ T9633] syzkaller0: entered allmulticast mode
[   64.949051][ T9641] netlink: 'syz.2.1189': attribute type 1 has an invalid length.
[   65.004525][ T9641] bond4: entered promiscuous mode
[   65.004653][ T9641] 8021q: adding VLAN 0 to HW filter on device bond4
[   65.060766][ T9645] 8021q: adding VLAN 0 to HW filter on device bond4
[   65.067304][ T9645] bond4: (slave gre1): The slave device specified does not support setting the MAC address
[   65.069489][ T9645] bond4: (slave gre1): Setting fail_over_mac to active for active-backup mode
[   65.081388][ T9645] bond4: (slave gre1): making interface the new active one
[   65.082919][ T9645] gre1: entered promiscuous mode
[   65.084573][ T9645] bond4: (slave gre1): Enslaving as an active interface with an up link
[   65.226259][ T9664] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[   65.239662][ T9663] syzkaller1: entered promiscuous mode
[   65.244808][ T9663] syzkaller1: entered allmulticast mode
[   65.310770][ T9669] syzkaller0: entered promiscuous mode
[   65.310802][ T9669] syzkaller0: entered allmulticast mode
[   65.357204][ T9675] bridge_slave_1: left allmulticast mode
[   65.358387][ T9675] bridge_slave_1: left promiscuous mode
[   65.359716][ T9675] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.362061][ T9675] bridge_slave_0: left allmulticast mode
[   65.363434][ T9675] bridge_slave_0: left promiscuous mode
[   65.364630][ T9675] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.542813][ T9701] syzkaller1: entered promiscuous mode
[   65.547926][ T9701] syzkaller1: entered allmulticast mode
[   65.821031][ T9743] IPv6: Can't replace route, no match found
[   65.856914][ T9749] netlink: 'syz.0.1235': attribute type 1 has an invalid length.
[   65.859002][ T9745] syzkaller0: entered promiscuous mode
[   65.859031][ T9745] syzkaller0: entered allmulticast mode
[   65.894864][ T9740] netlink: 'syz.3.1230': attribute type 10 has an invalid length.
[   65.898125][ T9740] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   65.926241][ T9751] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   65.926568][ T9751] syzkaller0: entered promiscuous mode
[   65.926578][ T9751] syzkaller0: entered allmulticast mode
[   65.930833][ T9751] tipc: Resetting bearer <eth:syzkaller0>
[   65.933669][ T9750] tipc: Resetting bearer <eth:syzkaller0>
[   65.936386][ T9750] tipc: Disabling bearer <eth:syzkaller0>
[   66.143619][ T9769] netlink: 'syz.4.1242': attribute type 1 has an invalid length.
[   66.175635][ T9769] bond3: entered promiscuous mode
[   66.175779][ T9769] 8021q: adding VLAN 0 to HW filter on device bond3
[   66.197762][ T9769] 8021q: adding VLAN 0 to HW filter on device bond3
[   66.199175][ T9769] bond3: (slave gre1): The slave device specified does not support setting the MAC address
[   66.199207][ T9769] bond3: (slave gre1): Setting fail_over_mac to active for active-backup mode
[   66.199680][ T9769] bond3: (slave gre1): Opening slave failed
[   66.243266][ T9778] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   66.450774][ T9801] syzkaller0: entered promiscuous mode
[   66.450808][ T9801] syzkaller0: entered allmulticast mode
[   66.789355][ T9828] syzkaller1: entered promiscuous mode
[   66.790552][ T9828] syzkaller1: entered allmulticast mode
[   66.834817][ T9835] netlink: 'syz.0.1269': attribute type 1 has an invalid length.
[   66.897429][ T9835] bond3: (slave vxcan3): The slave device specified does not support setting the MAC address
[   66.897925][ T9835] bond3: (slave vxcan3): Error -95 calling set_mac_address
[   66.967600][ T9845] bond3: (slave gretap1): making interface the new active one
[   66.968029][ T9845] bond3: (slave gretap1): Enslaving as an active interface with an up link
[   66.970978][ T9845] macvlan2: entered promiscuous mode
[   66.973906][ T9845] macvlan2: entered allmulticast mode
[   66.974278][ T9845] bond3: entered promiscuous mode
[   66.974288][ T9845] gretap1: entered promiscuous mode
[   66.974479][ T9845] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   66.992955][ T9845] bond3: (slave macvlan2): the slave hw address is in use by the bond; giving it the hw address of gretap1
[   67.032831][ T9845] bond3: left promiscuous mode
[   67.032869][ T9845] gretap1: left promiscuous mode
[   67.080810][ T9854] syzkaller0: entered promiscuous mode
[   67.080845][ T9854] syzkaller0: entered allmulticast mode
[   67.200977][ T9867] netlink: 'syz.3.1279': attribute type 1 has an invalid length.
[   67.207119][ T9867] bond5: entered promiscuous mode
[   67.207810][ T9867] 8021q: adding VLAN 0 to HW filter on device bond5
[   67.510819][ T9900] dvmrp8: entered allmulticast mode
[   67.600108][ T9899] dvmrp8: left allmulticast mode
[   67.767711][ T9930] syzkaller0: entered promiscuous mode
[   67.767750][ T9930] syzkaller0: entered allmulticast mode
[   67.921425][ T9949] tipc: Enabled bearer <udp:s>, priority 10
[   68.003880][ T9962] geneve2: entered promiscuous mode
[   68.094308][ T9974] netlink: 'syz.0.1322': attribute type 1 has an invalid length.
[   68.125842][ T9973] syzkaller0: entered promiscuous mode
[   68.125876][ T9973] syzkaller0: entered allmulticast mode
[   68.419476][T10008] netlink: 'syz.3.1338': attribute type 1 has an invalid length.
[   68.465289][T10015] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   68.467257][T10015] syzkaller0: entered promiscuous mode
[   68.467708][T10015] syzkaller0: entered allmulticast mode
[   68.478299][T10015] tipc: Resetting bearer <eth:syzkaller0>
[   68.480784][T10014] tipc: Resetting bearer <eth:syzkaller0>
[   68.497477][T10014] tipc: Disabling bearer <eth:syzkaller0>
[   68.529098][T10019] __nla_validate_parse: 22 callbacks suppressed
[   68.530237][T10019] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1343'.
[   68.637298][T10042] netlink: 'syz.4.1351': attribute type 1 has an invalid length.
[   69.105472][T10076] netlink: 'syz.3.1362': attribute type 1 has an invalid length.
[   69.315786][T10096] syz_tun: entered allmulticast mode
[   69.364736][T10096] netlink: 'syz.2.1370': attribute type 9 has an invalid length.
[   69.389646][T10096] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1370'.
[   69.396423][T10095] syz_tun: left allmulticast mode
[   69.546955][T10121] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   69.548480][T10121] syzkaller0: entered promiscuous mode
[   69.548509][T10121] syzkaller0: entered allmulticast mode
[   69.560313][T10121] tipc: Resetting bearer <eth:syzkaller0>
[   69.569840][T10120] tipc: Resetting bearer <eth:syzkaller0>
[   69.581060][T10120] tipc: Disabling bearer <eth:syzkaller0>
[   69.584275][T10125] netlink: 'syz.2.1382': attribute type 1 has an invalid length.
[   69.672196][T10134] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   69.680674][T10134] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1386'.
[   69.681726][T10134] tipc: Resetting bearer <eth:syzkaller0>
[   69.701425][T10132] tipc: Disabling bearer <eth:syzkaller0>
[   69.715357][T10139] syzkaller0: entered promiscuous mode
[   69.715382][T10139] syzkaller0: entered allmulticast mode
[   69.790322][T10143] netlink: 51 bytes leftover after parsing attributes in process `syz.4.1390'.
[   69.948136][T10153] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   69.949954][T10153] syzkaller0: entered promiscuous mode
[   69.951068][T10153] syzkaller0: entered allmulticast mode
[   69.962762][T10153] tipc: Resetting bearer <eth:syzkaller0>
[   69.971204][T10152] tipc: Resetting bearer <eth:syzkaller0>
[   69.986715][T10152] tipc: Disabling bearer <eth:syzkaller0>
[   70.090176][T10168] syzkaller0: entered promiscuous mode
[   70.091373][T10168] syzkaller0: entered allmulticast mode
[   70.120528][T10173] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1404'.
[   70.234523][T10191] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   70.236317][T10191] syzkaller0: entered promiscuous mode
[   70.237317][T10191] syzkaller0: entered allmulticast mode
[   70.241479][T10191] tipc: Resetting bearer <eth:syzkaller0>
[   70.250598][T10190] tipc: Resetting bearer <eth:syzkaller0>
[   70.265497][T10190] tipc: Disabling bearer <eth:syzkaller0>
[   70.288818][T10198] syzkaller0: entered promiscuous mode
[   70.288848][T10198] syzkaller0: entered allmulticast mode
[   70.325818][T10204] netlink: 'syz.0.1417': attribute type 4 has an invalid length.
[   70.360199][T10210] SET target dimension over the limit!
[   70.674242][T10222] syzkaller0: entered promiscuous mode
[   70.677135][T10222] syzkaller0: entered allmulticast mode
[   70.713786][ T6554] tipc: Node number set to 4224775711
[   70.933796][T10271] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1440'.
[   70.956798][T10274] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1442'.
[   71.089971][T10303] netlink: 'syz.3.1455': attribute type 1 has an invalid length.
[   71.098063][T10303] bond8: entered promiscuous mode
[   71.098954][T10303] 8021q: adding VLAN 0 to HW filter on device bond8
[   71.133707][T10306] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1456'.
[   71.159667][T10310] syzkaller0: entered promiscuous mode
[   71.162265][T10310] syzkaller0: entered allmulticast mode
[   71.228357][T10329] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   71.231775][T10329] tipc: Resetting bearer <eth:syzkaller0>
[   71.239522][T10327] tipc: Disabling bearer <eth:syzkaller0>
[   71.287751][T10341] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   71.288163][T10341] syzkaller0: entered promiscuous mode
[   71.288172][T10341] syzkaller0: entered allmulticast mode
[   71.291937][T10341] tipc: Resetting bearer <eth:syzkaller0>
[   71.302690][T10339] tipc: Resetting bearer <eth:syzkaller0>
[   71.320421][T10339] tipc: Disabling bearer <eth:syzkaller0>
[   71.339150][T10349] netlink: 'syz.4.1470': attribute type 1 has an invalid length.
[   71.354693][T10349] bond5: entered promiscuous mode
[   71.356034][T10349] 8021q: adding VLAN 0 to HW filter on device bond5
[   71.378808][T10349] 8021q: adding VLAN 0 to HW filter on device bond5
[   71.379010][T10349] bond5: (slave gre1): The slave device specified does not support setting the MAC address
[   71.379021][T10349] bond5: (slave gre1): Setting fail_over_mac to active for active-backup mode
[   71.393266][T10349] bond5: (slave gre1): making interface the new active one
[   71.393293][T10349] gre1: entered promiscuous mode
[   71.393857][T10349] bond5: (slave gre1): Enslaving as an active interface with an up link
[   71.529560][T10369] syzkaller0: entered promiscuous mode
[   71.529594][T10369] syzkaller0: entered allmulticast mode
[   71.543442][T10372] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   71.545466][T10372] tipc: Resetting bearer <eth:syzkaller0>
[   71.548580][T10371] tipc: Disabling bearer <eth:syzkaller0>
[   71.667468][T10387] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   71.668191][T10387] syzkaller0: entered promiscuous mode
[   71.668202][T10387] syzkaller0: entered allmulticast mode
[   71.673223][T10387] tipc: Resetting bearer <eth:syzkaller0>
[   71.674559][T10386] tipc: Resetting bearer <eth:syzkaller0>
[   71.681794][T10386] tipc: Disabling bearer <eth:syzkaller0>
[   71.735314][T10403] netlink: 'syz.4.1490': attribute type 1 has an invalid length.
[   71.766538][T10403] bond6: entered promiscuous mode
[   71.767294][T10403] 8021q: adding VLAN 0 to HW filter on device bond6
[   71.984464][T10435] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1498'.
[   72.046391][T10441] syzkaller0: entered promiscuous mode
[   72.046425][T10441] syzkaller0: entered allmulticast mode
[   72.273717][T10344] Set syz1 is full, maxelem 65536 reached
[   72.797723][T10495] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1523'.
[   73.100512][T10553] batadv1: entered promiscuous mode
[   73.102060][T10553] batadv1: entered allmulticast mode
[   73.116537][T10551] syzkaller0: entered promiscuous mode
[   73.117738][T10551] syzkaller0: entered allmulticast mode
[   73.612629][T10582] __nla_validate_parse: 6 callbacks suppressed
[   73.612830][T10582] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1551'.
[   73.616210][T10582] vlan2: entered promiscuous mode
[   73.616782][T10582] batadv0: entered promiscuous mode
[   73.629976][T10584] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   73.630283][T10584] syzkaller0: entered promiscuous mode
[   73.630292][T10584] syzkaller0: entered allmulticast mode
[   73.636447][T10584] tipc: Resetting bearer <eth:syzkaller0>
[   73.638269][T10586] SET target dimension over the limit!
[   73.638285][T10583] tipc: Resetting bearer <eth:syzkaller0>
[   73.642106][T10583] tipc: Disabling bearer <eth:syzkaller0>
[   73.837064][T10613] netlink: 'syz.2.1565': attribute type 1 has an invalid length.
[   73.926234][T10627] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1573'.
[   73.950287][T10629] syzkaller0: entered promiscuous mode
[   73.950397][T10629] syzkaller0: entered allmulticast mode
[   74.216347][T10669] syzkaller0: entered promiscuous mode
[   74.217392][T10669] syzkaller0: entered allmulticast mode
[   74.451929][T10700] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   74.491837][T10700] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1606'.
[   74.666730][T10737] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   74.705788][T10737] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1620'.
[   74.917510][T10789] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1639'.
[   74.917540][T10789] netem: unknown loss type 4
[   74.917560][T10789] netem: change failed
[   74.970692][T10799] syzkaller0: entered promiscuous mode
[   74.970720][T10799] syzkaller0: entered allmulticast mode
[   75.036219][T10811] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   75.037818][T10811] syzkaller0: entered promiscuous mode
[   75.039223][T10811] syzkaller0: entered allmulticast mode
[   75.050485][T10810] tipc: Resetting bearer <eth:syzkaller0>
[   75.057663][T10810] tipc: Disabling bearer <eth:syzkaller0>
[   75.137981][T10824] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1654'.
[   75.158101][T10833] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1658'.
[   75.251452][T10853] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   75.258947][T10855] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1666'.
[   75.259366][T10855] netlink: 124 bytes leftover after parsing attributes in process `syz.0.1666'.
[   75.260718][T10853] syzkaller0: entered promiscuous mode
[   75.260735][T10853] syzkaller0: entered allmulticast mode
[   75.269632][T10852] tipc: Resetting bearer <eth:syzkaller0>
[   75.278932][T10852] tipc: Disabling bearer <eth:syzkaller0>
[   75.296774][T10859] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1668'.
[   75.940326][T10957] syzkaller0: entered promiscuous mode
[   75.940352][T10957] syzkaller0: entered allmulticast mode
[   76.355575][T10968] loop4: detected capacity change from 0 to 256
[   76.377485][T10968] =======================================================
[   76.377485][T10968] WARNING: The mand mount option has been deprecated and
[   76.377485][T10968]          and is ignored by this kernel. Remove the mand
[   76.377485][T10968]          option from the mount to silence this warning.
[   76.377485][T10968] =======================================================
[   76.392043][T10966] batadv_slave_0: entered promiscuous mode
[   76.393860][T10965] batadv_slave_0: left promiscuous mode
[   76.627385][T10989] loop3: detected capacity change from 0 to 256
[   76.668984][T10992] loop4: detected capacity change from 0 to 512
[   76.676331][T10992] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   76.692182][T10989] FAT-fs (loop3): error, clusters badly computed (0 != 128)
[   76.692210][T10989] FAT-fs (loop3): Filesystem has been set read-only
[   76.694082][T10989] FAT-fs (loop3): error, clusters badly computed (1 != 129)
[   76.694149][T10989] FAT-fs (loop3): error, clusters badly computed (2 != 130)
[   77.058942][T11060] fuse: Bad value for 'fd'
[   77.067996][T11061] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[   77.068289][T11061] syzkaller0: entered promiscuous mode
[   77.068300][T11061] syzkaller0: entered allmulticast mode
[   77.676806][T11105] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   77.697281][T11104] loop0: detected capacity change from 0 to 8192
[   77.725107][T11104]  loop0: p3 p4 < >
[   77.725730][T11104] loop0: p3 start 17825536 is beyond EOD, truncated
[   77.839164][ T6660] udevd[6660]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   77.931627][T11146] loop1: detected capacity change from 0 to 1764
[   78.085005][T11169] syz.3.1806 (11169): /proc/11168/oom_adj is deprecated, please use /proc/11168/oom_score_adj instead.
[   78.309942][T11203] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   78.317946][T11203] tipc: Resetting bearer <eth:syzkaller0>
[   78.321882][T11201] tipc: Disabling bearer <eth:syzkaller0>
[   78.696284][T11225] syzkaller0: entered promiscuous mode
[   78.696317][T11225] syzkaller0: entered allmulticast mode
[   78.702573][T11227] 9pnet_fd: Insufficient options for proto=fd
[   78.740592][T11229] __nla_validate_parse: 9 callbacks suppressed
[   78.740625][T11229] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1831'.
[   78.766956][ T6543] Bluetooth: hci4: link tx timeout
[   78.767069][ T6543] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[   78.823283][T11242] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   78.823644][T11242] syzkaller0: entered promiscuous mode
[   78.823656][T11242] syzkaller0: entered allmulticast mode
[   78.841998][T11242] tipc: Resetting bearer <eth:syzkaller0>
[   78.842075][T11242] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   78.842090][T11242] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   78.845996][T11241] tipc: Resetting bearer <eth:syzkaller0>
[   78.849444][T11246] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1839'.
[   78.855549][T11241] tipc: Disabling bearer <eth:syzkaller0>
[   78.861140][T11246] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1839'.
[   78.915607][T11255] syzkaller0: entered promiscuous mode
[   78.916825][T11255] syzkaller0: entered allmulticast mode
[   78.955271][T11261] syzkaller0: entered promiscuous mode
[   78.955303][T11261] syzkaller0: entered allmulticast mode
[   79.024476][T11273] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   79.026513][T11273] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   79.058372][T11274] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1847'.
[   79.098550][T11281] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   79.099655][T11281] tipc: Resetting bearer <eth:syzkaller0>
[   79.101455][T11280] tipc: Disabling bearer <eth:syzkaller0>
[   79.436093][ T6543] Bluetooth: hci4: link tx timeout
[   79.436123][ T6543] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[   79.480846][T11297] syzkaller0: entered promiscuous mode
[   79.480872][T11297] syzkaller0: entered allmulticast mode
[   79.811709][T11320] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   79.812883][T11320] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1870'.
[   79.815815][T11320] tipc: Resetting bearer <eth:syzkaller0>
[   79.822642][T11319] tipc: Disabling bearer <eth:syzkaller0>
[   79.860232][T11326] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   79.888290][T11330] syzkaller0: entered promiscuous mode
[   79.888325][T11330] syzkaller0: entered allmulticast mode
[   79.915288][T11334] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   79.917139][T11334] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   80.078673][T11352] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   80.195908][T11368] netlink: 124 bytes leftover after parsing attributes in process `syz.4.1892'.
[   80.252745][ T6554] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   80.402431][ T6554] usb 1-1: Using ep0 maxpacket: 32
[   80.408694][ T6554] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[   80.408729][ T6554] usb 1-1: config 0 has no interface number 0
[   80.413307][ T6554] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[   80.413331][ T6554] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   80.413339][ T6554] usb 1-1: Product: syz
[   80.413345][ T6554] usb 1-1: Manufacturer: syz
[   80.413351][ T6554] usb 1-1: SerialNumber: syz
[   80.417335][ T6554] usb 1-1: config 0 descriptor??
[   80.428415][ T6554] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[   80.471248][T11392] 9pnet_fd: Insufficient options for proto=fd
[   80.558319][T11402] syzkaller0: entered promiscuous mode
[   80.559415][T11402] syzkaller0: entered allmulticast mode
[   80.566226][T11404] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1909'.
[   80.631745][ T6554] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[   80.640666][T11416] 9pnet_fd: Insufficient options for proto=fd
[   80.645798][ T6554] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[   80.822496][ T6543] Bluetooth: hci4: command 0x0405 tx timeout
[   80.835937][T11440] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.851520][T11448] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.854273][T11448] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   81.040908][    C0] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71
[   81.047191][ T6554] usb 1-1: USB disconnect, device number 2
[   81.053028][ T6554] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[   81.060768][ T6554] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[   81.063701][ T6554] quatech2 1-1:0.51: device disconnected
[   81.116419][T11477] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   81.116592][T11477] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   81.312741][T11484] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1941'.
[   81.524083][T11503] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   81.590822][T11513] 8021q: adding VLAN 0 to HW filter on device bond2
[   81.603081][  T609] bond2: (slave macvlan2): link status definitely down, disabling slave
[   81.672900][T11529] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1963'.
[   81.674804][T11529] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1963'.
[   81.748412][T11537] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   81.756137][T11537] syzkaller0: entered promiscuous mode
[   81.757194][T11537] syzkaller0: entered allmulticast mode
[   81.771337][T11536] tipc: Resetting bearer <eth:syzkaller0>
[   82.279366][T11536] tipc: Disabling bearer <eth:syzkaller0>
[   82.549101][T11587] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   82.557419][T11587] syzkaller0: entered promiscuous mode
[   82.558282][T11587] syzkaller0: entered allmulticast mode
[   82.563682][T11586] tipc: Resetting bearer <eth:syzkaller0>
[   83.024878][T11586] tipc: Disabling bearer <eth:syzkaller0>
[   83.093454][T11615] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   83.096320][T11615] syzkaller0: entered promiscuous mode
[   83.096356][T11615] syzkaller0: entered allmulticast mode
[   83.121222][T11621] netlink: 'syz.2.1995': attribute type 6 has an invalid length.
[   83.123782][T11615] tipc: Resetting bearer <eth:syzkaller0>
[   83.127144][T11614] tipc: Resetting bearer <eth:syzkaller0>
[   83.134819][T11614] tipc: Disabling bearer <eth:syzkaller0>
[   83.150591][T11625] 9pnet_fd: Insufficient options for proto=fd
[   83.256392][T11639] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   83.633439][T11661] syzkaller0: entered promiscuous mode
[   83.634807][T11661] syzkaller0: entered allmulticast mode
[   83.941708][T11675] __nla_validate_parse: 1 callbacks suppressed
[   83.944296][T11675] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2016'.
[   83.946957][T11675] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2016'.
[   84.052893][T11683] syzkaller0: entered promiscuous mode
[   84.052925][T11683] syzkaller0: entered allmulticast mode
[   84.259051][T11701] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2027'.
[   84.259482][T11701] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2027'.
[   84.375916][T11709] mmap: syz.1.2025 (11709) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   84.726988][T11746] syzkaller0: entered promiscuous mode
[   84.728223][T11746] syzkaller0: entered allmulticast mode
[   84.790825][T11753] netlink: 124 bytes leftover after parsing attributes in process `syz.4.2045'.
[   84.815544][T11759] input: syz1 as /devices/virtual/input/input4
[   84.888531][T11763] netlink: 'syz.2.2050': attribute type 2 has an invalid length.
[   84.932651][T11767] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2052'.
[   85.001929][T11777] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2057'.
[   85.212446][T11804] xt_TCPMSS: Only works on TCP SYN packets
[   85.382508][ T6606] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   85.633463][T11814] syzkaller0: entered promiscuous mode
[   85.633497][T11814] syzkaller0: entered allmulticast mode
[   85.853273][ T6606] usb 1-1: Using ep0 maxpacket: 8
[   85.857071][ T6606] usb 1-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[   85.857122][ T6606] usb 1-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[   85.857135][ T6606] usb 1-1: Product: syz
[   85.857141][ T6606] usb 1-1: Manufacturer: syz
[   85.857146][ T6606] usb 1-1: SerialNumber: syz
[   85.858789][ T6606] usb 1-1: config 0 descriptor??
[   85.860857][ T6606] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[   85.939240][T11839] syzkaller0: entered promiscuous mode
[   85.940270][T11839] syzkaller0: entered allmulticast mode
[   85.976584][T11842] syzkaller0: entered promiscuous mode
[   85.977612][T11842] syzkaller0: entered allmulticast mode
[   85.983496][T11842] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2084'.
[   86.052055][T11844] syzkaller0: entered promiscuous mode
[   86.052080][T11844] syzkaller0: entered allmulticast mode
[   86.249009][T11868] syzkaller0: entered promiscuous mode
[   86.249038][T11868] syzkaller0: entered allmulticast mode
[   86.265062][T11868] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2096'.
[   86.374929][T11886] autofs: Bad value for 'fd'
[   86.453453][T11896] syzkaller0: entered promiscuous mode
[   86.454447][T11896] syzkaller0: entered allmulticast mode
[   86.472042][ T6606] gspca_zc3xx: reg_w_i err -71
[   86.472091][ T6606] gspca_zc3xx 1-1:0.0: probe with driver gspca_zc3xx failed with error -71
[   86.475413][ T6606] usb 1-1: USB disconnect, device number 3
[   86.567849][T11905] syzkaller0: entered promiscuous mode
[   86.567891][T11905] syzkaller0: entered allmulticast mode
[   86.573230][T11905] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2113'.
[   86.728514][T11931] ip6tnl1: entered allmulticast mode
[   86.776716][T11937] autofs: Bad value for 'fd'
[   86.971963][T11968] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   87.011119][T11972] autofs: Unknown parameter '00000000000000000000'
[   87.425234][T12003] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   87.727998][T12043] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   87.978097][T12071] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   87.978503][T12071] syzkaller0: entered promiscuous mode
[   87.978533][T12071] syzkaller0: entered allmulticast mode
[   87.986016][T12069] syzkaller0: entered promiscuous mode
[   87.986071][T12069] syzkaller0: entered allmulticast mode
[   88.015826][T12070] tipc: Resetting bearer <eth:syzkaller0>
[   88.021757][T12070] tipc: Disabling bearer <eth:syzkaller0>
[   88.094444][T12083] binder: 12081:12083 ioctl c0306201 0 returned -14
[   88.162703][T12085] syzkaller0: entered promiscuous mode
[   88.163747][T12085] syzkaller0: entered allmulticast mode
[   88.229093][T12099] autofs: Unknown parameter '00000000000000000000'
[   88.268351][T12103] netlink: 'syz.1.2185': attribute type 1 has an invalid length.
[   88.291564][T12103] 8021q: adding VLAN 0 to HW filter on device bond4
[   88.535201][T12136] netlink: 'syz.1.2193': attribute type 21 has an invalid length.
[   88.537104][T12136] xt_hashlimit: max too large, truncated to 1048576
[   88.556301][   T31] audit: type=1326 audit(88.510:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12122 comm="syz.1.2193" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[   88.556349][   T31] audit: type=1326 audit(88.510:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12122 comm="syz.1.2193" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[   88.556381][   T31] audit: type=1326 audit(88.510:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12122 comm="syz.1.2193" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[   88.556404][   T31] audit: type=1326 audit(88.510:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12122 comm="syz.1.2193" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[   88.556422][   T31] audit: type=1326 audit(88.510:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12122 comm="syz.1.2193" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[   88.556438][   T31] audit: type=1326 audit(88.510:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12122 comm="syz.1.2193" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=208 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[   88.556454][   T31] audit: type=1326 audit(88.510:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12122 comm="syz.1.2193" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[   88.556469][   T31] audit: type=1326 audit(88.510:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12122 comm="syz.1.2193" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[   88.556484][   T31] audit: type=1326 audit(88.510:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12122 comm="syz.1.2193" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[   88.556499][   T31] audit: type=1326 audit(88.510:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12122 comm="syz.1.2193" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[   88.704271][T12150] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   88.705911][T12150] syzkaller0: entered promiscuous mode
[   88.707153][T12150] syzkaller0: entered allmulticast mode
[   88.711118][T12150] tipc: Resetting bearer <eth:syzkaller0>
[   88.721216][T12146] tipc: Resetting bearer <eth:syzkaller0>
[   88.726337][T12146] tipc: Disabling bearer <eth:syzkaller0>
[   88.793983][ T6542] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[   88.871880][T12165] autofs: Unknown parameter '00000000000000000000'
[   88.965569][ T6542] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[   88.967301][ T6542] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   88.968889][ T6542] usb 1-1: Product: syz
[   88.969565][ T6542] usb 1-1: Manufacturer: syz
[   88.970448][ T6542] usb 1-1: SerialNumber: syz
[   88.973999][ T6542] usb 1-1: config 0 descriptor??
[   89.047244][T12172] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   89.047273][T12172] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[   89.176771][T12172] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   89.179462][T12172] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[   89.183542][ T6542] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[   89.277545][T12172] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   89.277574][T12172] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[   89.374309][T12172] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[   89.374342][T12172] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[   89.381244][T12184] syzkaller0: entered promiscuous mode
[   89.381271][T12184] syzkaller0: entered allmulticast mode
[   90.272733][T12231] __nla_validate_parse: 5 callbacks suppressed
[   90.274057][T12231] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2234'.
[   90.336038][T12234] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   90.336339][T12234] syzkaller0: entered promiscuous mode
[   90.336348][T12234] syzkaller0: entered allmulticast mode
[   90.340730][T12234] tipc: Resetting bearer <eth:syzkaller0>
[   90.342076][T12233] tipc: Resetting bearer <eth:syzkaller0>
[   90.347901][T12233] tipc: Disabling bearer <eth:syzkaller0>
[   90.531130][T12256] syzkaller0: entered promiscuous mode
[   90.531163][T12256] syzkaller0: entered allmulticast mode
[   90.564237][T12259] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   90.564585][T12259] syzkaller0: entered promiscuous mode
[   90.564596][T12259] syzkaller0: entered allmulticast mode
[   90.566718][T12259] tipc: Resetting bearer <eth:syzkaller0>
[   90.568313][T12258] tipc: Resetting bearer <eth:syzkaller0>
[   90.570891][T12258] tipc: Disabling bearer <eth:syzkaller0>
[   90.737969][ T6542] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[   90.738979][ T6542] usb 1-1: USB disconnect, device number 4
[   90.857866][T12299] syzkaller0: entered promiscuous mode
[   90.862037][T12299] syzkaller0: entered allmulticast mode
[   90.892133][T12302] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   90.897537][T12302] tipc: Resetting bearer <eth:syzkaller0>
[   90.906934][T12301] tipc: Disabling bearer <eth:syzkaller0>
[   91.148805][T12322] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2264'.
[   91.148834][T12322] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2264'.
[   91.823556][T12337] syzkaller0: entered promiscuous mode
[   91.824566][T12337] syzkaller0: entered allmulticast mode
[   91.945087][T12353] syzkaller0: entered promiscuous mode
[   91.945113][T12353] syzkaller0: entered allmulticast mode
[   91.950036][T12353] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2277'.
[   92.075691][T12361] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[   92.077683][T12361] syzkaller0: entered promiscuous mode
[   92.077709][T12361] syzkaller0: entered allmulticast mode
[   92.213444][ T9381] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   92.363213][ T9381] usb 1-1: Using ep0 maxpacket: 16
[   92.365249][ T9381] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[   92.365276][ T9381] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   92.371616][ T9381] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[   92.371638][ T9381] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   92.371654][ T9381] usb 1-1: Product: syz
[   92.371663][ T9381] usb 1-1: Manufacturer: syz
[   92.371672][ T9381] usb 1-1: SerialNumber: syz
[   92.379354][ T9381] usb 1-1: config 0 descriptor??
[   92.382031][ T9381] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[   92.384533][T12385] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   92.384845][T12385] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   92.387724][ T9381] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[   92.458931][T12390] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[   92.460104][T12390] syzkaller0: entered promiscuous mode
[   92.460116][T12390] syzkaller0: entered allmulticast mode
[   92.642291][T12404] syzkaller0: entered promiscuous mode
[   92.642873][T12404] syzkaller0: entered allmulticast mode
[   92.746460][T12416] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   92.748084][T12416] syzkaller0: entered promiscuous mode
[   92.748109][T12416] syzkaller0: entered allmulticast mode
[   92.759355][T12416] tipc: Resetting bearer <eth:syzkaller0>
[   92.760743][T12415] tipc: Resetting bearer <eth:syzkaller0>
[   92.765455][T12415] tipc: Disabling bearer <eth:syzkaller0>
[   92.806698][T12420] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   92.806878][T12420] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   92.984068][ T9381] em28xx 1-1:0.0: chip ID is em2870
[   93.187880][ T9381] usb 1-1: USB disconnect, device number 5
[   93.188379][ T9381] em28xx 1-1:0.0: Disconnecting em28xx
[   93.190637][ T9381] em28xx 1-1:0.0: Freeing device
[   93.516572][T12457] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2326'.
[   93.516689][T12457] 8021q: VLANs not supported on sit0
[   93.651206][T12466] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2330'.
[   93.776778][T12479] netlink: 180 bytes leftover after parsing attributes in process `syz.2.2336'.
[   93.843697][   T31] kauditd_printk_skb: 16 callbacks suppressed
[   93.843738][   T31] audit: type=1326 audit(93.810:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12472 comm="syz.0.2333" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[   93.843766][   T31] audit: type=1326 audit(93.810:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12472 comm="syz.0.2333" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=274 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[   93.843789][   T31] audit: type=1326 audit(93.810:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12472 comm="syz.0.2333" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[   93.843809][   T31] audit: type=1326 audit(93.810:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12472 comm="syz.0.2333" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff96159794 code=0x7ffc0000
[   93.843825][   T31] audit: type=1326 audit(93.810:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12472 comm="syz.0.2333" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[   93.843842][   T31] audit: type=1326 audit(93.810:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12472 comm="syz.0.2333" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[   93.843857][   T31] audit: type=1326 audit(93.810:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12472 comm="syz.0.2333" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[   93.843872][   T31] audit: type=1326 audit(93.810:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12472 comm="syz.0.2333" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=21 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[   93.843886][   T31] audit: type=1326 audit(93.810:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12472 comm="syz.0.2333" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[   93.843901][   T31] audit: type=1326 audit(93.810:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12472 comm="syz.0.2333" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[   93.908307][T12484] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2337'.
[   94.264626][T12494] No control pipe specified
[   94.287825][T12496] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   94.405934][T12507] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.408956][T12507] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.610609][T12507] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.610774][T12507] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.616459][T12513] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   94.618159][T12513] syzkaller0: entered promiscuous mode
[   94.618188][T12513] syzkaller0: entered allmulticast mode
[   94.622765][T12513] tipc: Resetting bearer <eth:syzkaller0>
[   94.629086][T12512] tipc: Resetting bearer <eth:syzkaller0>
[   94.637639][T12512] tipc: Disabling bearer <eth:syzkaller0>
[   94.656631][T12521] No control pipe specified
[   95.775241][T12560] No control pipe specified
[   95.868238][T12570] netlink: 120 bytes leftover after parsing attributes in process `syz.4.2367'.
[   95.990542][T12587] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.992304][T12587] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   96.005570][T12587] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   96.007409][T12587] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   96.009797][T12590] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2375'.
[   96.011458][T12590] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2375'.
[   96.185618][T12611] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2380'.
[   96.185658][T12611] netlink: 'syz.4.2380': attribute type 13 has an invalid length.
[   96.185721][T12611] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2380'.
[   96.185729][T12611] netlink: 'syz.4.2380': attribute type 13 has an invalid length.
[   96.226880][T12616] netlink: 'syz.4.2382': attribute type 1 has an invalid length.
[   96.226909][T12616] netlink: 260 bytes leftover after parsing attributes in process `syz.4.2382'.
[   96.666933][T12637] syzkaller0: entered promiscuous mode
[   96.666971][T12637] syzkaller0: entered allmulticast mode
[   96.788227][T12640] netlink: 'syz.1.2390': attribute type 1 has an invalid length.
[   96.815305][T12640] 8021q: adding VLAN 0 to HW filter on device bond5
[   96.883633][T12644] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   96.885139][T12644] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   97.315935][T12651] syzkaller0: entered promiscuous mode
[   97.315975][T12651] syzkaller0: entered allmulticast mode
[   97.910506][T12671] syzkaller0: entered promiscuous mode
[   97.910534][T12671] syzkaller0: entered allmulticast mode
[   98.096823][T12679] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   98.097004][T12679] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   98.500868][T12700] syzkaller0: entered promiscuous mode
[   98.500897][T12700] syzkaller0: entered allmulticast mode
[   98.833912][T12714] netlink: 'syz.1.2417': attribute type 1 has an invalid length.
[   98.874339][T12714] loop2: detected capacity change from 0 to 7
[   98.878092][T12714] Dev loop2: unable to read RDB block 7
[   98.878130][T12714]  loop2: unable to read partition table
[   98.878198][T12714] loop2: partition table beyond EOD, truncated
[   98.878213][T12714] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[   98.957000][T12723] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   98.960235][T12723] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   99.208961][T12733] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   99.209143][T12733] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   99.376697][T12745] syzkaller0: entered promiscuous mode
[   99.376728][T12745] syzkaller0: entered allmulticast mode
[   99.621137][T12755] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2432'.
[   99.715594][T12765] syzkaller0: entered promiscuous mode
[   99.715633][T12765] syzkaller0: entered allmulticast mode
[   99.957546][T12781] syzkaller0: entered promiscuous mode
[   99.957580][T12781] syzkaller0: entered allmulticast mode
[  100.028772][T12783] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2442'.
[  100.030631][T12783] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2442'.
[  100.112531][ T6554] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  100.143995][T12790] bond_slave_0: entered promiscuous mode
[  100.144026][T12790] bond_slave_1: entered promiscuous mode
[  100.146497][T12790] vlan2: entered promiscuous mode
[  100.147358][T12790] bond0: entered promiscuous mode
[  100.160775][   T31] kauditd_printk_skb: 24 callbacks suppressed
[  100.160796][   T31] audit: type=1326 audit(100.130:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12791 comm="syz.3.2446" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f55b3a8 code=0x0
[  100.235911][T12798] syzkaller0: entered promiscuous mode
[  100.236936][T12798] syzkaller0: entered allmulticast mode
[  100.262415][ T6554] usb 1-1: Using ep0 maxpacket: 32
[  100.265097][ T6554] usb 1-1: New USB device found, idVendor=0ccd, idProduct=10a5, bcdDevice=eb.4c
[  100.266609][ T6554] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.271482][ T6554] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  100.302510][ T6554] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  100.303633][ T6554] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  100.412402][ T6554] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  100.413572][ T6554] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  100.429369][T12805] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  100.431002][T12805] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  100.472415][ T6554] usb 1-1: dvb_usb_v2: found a 'Terratec H7 Rev.4' in warm state
[  100.481801][ T6554] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  100.483755][ T6554] dvbdev: DVB: registering new adapter (Terratec H7 Rev.4)
[  100.483788][ T6554] usb 1-1: media controller created
[  100.483990][ T6554] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  100.484012][ T6554] usb 1-1: dvb_usb_v2: MAC address: 00:00:00:00:00:00
[  100.494136][ T6554] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  100.563383][ T6554] usb 1-1: USB disconnect, device number 6
[  101.279971][T12832] syzkaller0: entered promiscuous mode
[  101.281313][T12832] syzkaller0: entered allmulticast mode
[  101.420165][T12838] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  101.420486][T12838] syzkaller0: entered promiscuous mode
[  101.420496][T12838] syzkaller0: entered allmulticast mode
[  101.427314][T12838] tipc: Resetting bearer <eth:syzkaller0>
[  101.428586][T12837] tipc: Resetting bearer <eth:syzkaller0>
[  101.433538][T12837] tipc: Disabling bearer <eth:syzkaller0>
[  101.688079][T12869] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  101.689737][T12869] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  101.742404][    T9] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  101.882475][   T31] audit: type=1326 audit(101.860:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12878 comm="syz.1.2477" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[  101.886115][   T31] audit: type=1326 audit(101.860:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12878 comm="syz.1.2477" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[  101.892491][    T9] usb 1-1: Using ep0 maxpacket: 16
[  101.893805][   T31] audit: type=1326 audit(101.860:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12878 comm="syz.1.2477" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=149 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[  101.893968][   T31] audit: type=1326 audit(101.870:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12878 comm="syz.1.2477" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[  101.894144][   T31] audit: type=1326 audit(101.870:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12878 comm="syz.1.2477" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa55b3a8 code=0x7ffc0000
[  101.907051][    T9] usb 1-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  101.907081][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.907108][    T9] usb 1-1: Product: syz
[  101.907121][    T9] usb 1-1: Manufacturer: syz
[  101.907131][    T9] usb 1-1: SerialNumber: syz
[  101.913669][    T9] usb 1-1: config 0 descriptor??
[  101.923167][    T9] ssu100 1-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  101.931277][T12885] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2480'.
[  101.934363][T12882] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  102.005354][T12898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.007058][T12898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.270765][T12906] syzkaller0: entered promiscuous mode
[  102.270798][T12906] syzkaller0: entered allmulticast mode
[  102.536415][T12920] syzkaller0: entered promiscuous mode
[  102.537097][T12920] syzkaller0: entered allmulticast mode
[  102.933564][    T9] ssu100 1-1:0.0: probe with driver ssu100 failed with error -71
[  102.937961][    T9] usb 1-1: USB disconnect, device number 7
[  103.197292][T12941] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  103.245996][T12945] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2504'.
[  103.300852][T12954] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2508'.
[  103.303660][T12951] syzkaller0: entered promiscuous mode
[  103.303687][T12951] syzkaller0: entered allmulticast mode
[  103.429995][T12965] netlink: 'syz.1.2512': attribute type 1 has an invalid length.
[  103.618039][T12979] netlink: 'syz.3.2515': attribute type 1 has an invalid length.
[  103.618073][T12979] netlink: 'syz.3.2515': attribute type 1 has an invalid length.
[  103.618094][T12979] netlink: 68 bytes leftover after parsing attributes in process `syz.3.2515'.
[  104.097857][T13014] netlink: 'syz.2.2526': attribute type 1 has an invalid length.
[  104.097889][T13014] netlink: 'syz.2.2526': attribute type 1 has an invalid length.
[  104.097899][T13014] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2526'.
[  104.149290][   T31] audit: type=1326 audit(104.120:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13018 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8635b3a8 code=0x7ffc0000
[  104.152408][   T31] audit: type=1326 audit(104.120:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13018 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8635b3a8 code=0x7ffc0000
[  104.155612][   T31] audit: type=1326 audit(104.120:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13018 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=165 compat=0 ip=0xffff8635b3a8 code=0x7ffc0000
[  104.158833][   T31] audit: type=1326 audit(104.120:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13018 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8635b3a8 code=0x7ffc0000
[  104.218688][T13023] fuse: Unknown parameter 'user_i00000000000000000000'
[  104.283342][T13027] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  104.683283][T13063] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  104.704690][T13068] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  104.929180][T13091] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  105.061547][ T6543] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  105.064346][ T6543] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  105.065803][ T6543] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  105.067458][ T6543] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  105.068134][ T6543] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  105.074270][   T52] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  105.074462][   T52] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  105.074591][   T52] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  105.075432][   T52] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  105.077292][   T52] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  105.197120][T13097] chnl_net:caif_netlink_parms(): no params data found
[  105.248278][T13097] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.248338][T13097] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.248412][T13097] bridge_slave_0: entered allmulticast mode
[  105.248842][T13097] bridge_slave_0: entered promiscuous mode
[  105.249597][T13097] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.249639][T13097] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.249703][T13097] bridge_slave_1: entered allmulticast mode
[  105.250115][T13097] bridge_slave_1: entered promiscuous mode
[  105.321224][T13097] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.329165][T13097] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.367790][T13097] team0: Port device team_slave_0 added
[  105.369024][T13097] team0: Port device team_slave_1 added
[  105.409213][T13097] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.409251][T13097] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.409268][T13097] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.410350][T13097] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.410360][T13097] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.410375][T13097] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.443125][T13097] hsr_slave_0: entered promiscuous mode
[  105.444584][T13097] hsr_slave_1: entered promiscuous mode
[  105.445727][T13097] debugfs: 'hsr0' already exists in 'hsr'
[  105.446735][T13097] Cannot create hsr debugfs directory
[  105.590670][T13097] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.661397][T13097] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.717977][T13134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2565'.
[  105.755955][T13097] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.808578][T13097] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.940193][T13097] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  106.023138][T13097] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  106.044499][T13097] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  106.049108][T13097] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  106.105939][T13097] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.114377][T13097] 8021q: adding VLAN 0 to HW filter on device team0
[  106.174006][ T2148] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.174045][ T2148] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.181055][ T2148] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.181095][ T2148] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.199455][T13097] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  106.199488][T13097] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  106.339436][T13175] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  106.361902][T13177] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  106.381904][T13097] 8021q: adding VLAN 0 to HW filter on device batadv0
[  106.601028][T13097] veth0_vlan: entered promiscuous mode
[  106.615592][T13097] veth1_vlan: entered promiscuous mode
[  106.636251][T13097] veth0_macvtap: entered promiscuous mode
[  106.637205][T13097] veth1_macvtap: entered promiscuous mode
[  106.658140][T13097] batman_adv: batadv0: Interface activated: batadv_slave_0
[  106.669886][T13097] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.676077][ T5089] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.676188][ T5089] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.676209][ T5089] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.676228][ T5089] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.778983][  T232] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.779013][  T232] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.811713][ T2148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.811744][ T2148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.128789][T13233] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  107.142653][ T6543] Bluetooth: hci5: command tx timeout
[  107.432000][T13266] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  107.434924][T13266] syzkaller0: entered promiscuous mode
[  107.434953][T13266] syzkaller0: entered allmulticast mode
[  107.512676][T13274] syzkaller0: entered promiscuous mode
[  107.512708][T13274] syzkaller0: entered allmulticast mode
[  107.626833][T13278] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  107.627014][T13278] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  108.414430][T13303] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  108.414602][T13303] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  108.419084][T13303] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  108.420515][T13303] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  108.502621][ T6554] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  108.653610][ T6554] usb 1-1: config 0 interface 0 has no altsetting 0
[  108.653651][ T6554] usb 1-1: New USB device found, idVendor=056e, idProduct=019b, bcdDevice= 0.00
[  108.653665][ T6554] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.656605][ T6554] usb 1-1: config 0 descriptor??
[  108.908726][T13307] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2622'.
[  108.908754][T13307] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2622'.
[  108.910783][T13307] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2622'.
[  108.910793][T13307] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2622'.
[  108.941571][T13311] netlink: 'syz.1.2624': attribute type 1 has an invalid length.
[  109.040404][T13327] netlink: 'syz.3.2630': attribute type 1 has an invalid length.
[  109.055869][T13329] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2631'.
[  109.063749][ T6554] elecom 0003:056E:019B.0001: unknown main item tag 0x0
[  109.065143][ T6554] elecom 0003:056E:019B.0001: item fetching failed at offset 3/5
[  109.065378][ T6554] elecom 0003:056E:019B.0001: probe with driver elecom failed with error -22
[  109.177464][T13346] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2634'.
[  109.177489][T13346] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2634'.
[  109.177850][T13346] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2634'.
[  109.177860][T13346] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2634'.
[  109.222389][ T6543] Bluetooth: hci5: command tx timeout
[  109.268088][ T9381] usb 1-1: USB disconnect, device number 8
[  109.899051][T13362] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2640'.
[  109.921225][T13364] fuse: Unknown parameter 'grou00000000000000000000'
[  110.066575][T13371] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  110.589332][T13400] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  110.700684][T13408] fuse: Unknown parameter 'group_i00000000000000000000'
[  110.849321][T13431] macvlan3: entered promiscuous mode
[  110.850282][T13431] macvlan3: entered allmulticast mode
[  111.000495][T13456] capability: warning: `syz.3.2681' uses deprecated v2 capabilities in a way that may be insecure
[  111.029955][T13460] syz_tun: entered allmulticast mode
[  111.031991][T13459] syz_tun: left allmulticast mode
[  111.303300][ T6543] Bluetooth: hci5: command tx timeout
[  111.747179][T13477] fuse: Unknown parameter 'group_id00000000000000000000'
[  111.825712][T13492] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  111.910055][T13508] fuse: Unknown parameter 'group_id00000000000000000000'
[  112.246010][T13526] (unnamed net_device) (uninitialized): down delay (8) is not a multiple of miimon (5), value rounded to 5 ms
[  112.246041][T13526] (unnamed net_device) (uninitialized): peer notification delay (237) is not a multiple of miimon (5), value rounded to 235 ms
[  112.259751][T13526] bond9: entered promiscuous mode
[  112.261073][T13526] 8021q: adding VLAN 0 to HW filter on device bond9
[  112.409521][T13538] fuse: Unknown parameter 'group_id00000000000000000000'
[  112.412275][T13540] capability: warning: `syz.2.2715' uses 32-bit capabilities (legacy support in use)
[  112.556343][   T31] kauditd_printk_skb: 41 callbacks suppressed
[  112.557409][   T31] audit: type=1326 audit(112.530:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13550 comm="syz.0.2722" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[  112.561382][   T31] audit: type=1326 audit(112.530:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13550 comm="syz.0.2722" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[  112.567354][T13560] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  112.572894][   T31] audit: type=1326 audit(112.550:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13550 comm="syz.0.2722" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=4 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[  112.576535][   T31] audit: type=1326 audit(112.550:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13550 comm="syz.0.2722" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[  112.588086][   T31] audit: type=1326 audit(112.560:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13550 comm="syz.0.2722" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9615b3a8 code=0x7ffc0000
[  112.735084][T13571] fuse: Bad value for 'user_id'
[  112.737281][T13571] fuse: Bad value for 'user_id'
[  113.190997][   T52] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  113.191634][   T52] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  113.192094][   T52] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  113.198334][   T52] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  113.198559][   T52] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  113.285248][T13607] chnl_net:caif_netlink_parms(): no params data found
[  113.376584][T13607] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.381774][T13607] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.381900][T13607] bridge_slave_0: entered allmulticast mode
[  113.385858][T13607] bridge_slave_0: entered promiscuous mode
[  113.387761][T13607] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.389012][T13607] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.390266][T13607] bridge_slave_1: entered allmulticast mode
[  113.392038][T13607] bridge_slave_1: entered promiscuous mode
[  113.393123][   T52] Bluetooth: hci5: command tx timeout
[  113.546097][T13607] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  113.547096][T13607] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  113.552519][T13655] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  113.580362][T13607] team0: Port device team_slave_0 added
[  113.597243][T13607] team0: Port device team_slave_1 added
[  113.639478][T13607] batman_adv: batadv0: Adding interface: batadv_slave_0
[  113.639503][T13607] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.639771][T13607] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  113.640424][T13607] batman_adv: batadv0: Adding interface: batadv_slave_1
[  113.640431][T13607] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.640441][T13607] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  113.664655][T13607] hsr_slave_0: entered promiscuous mode
[  113.666060][T13607] hsr_slave_1: entered promiscuous mode
[  113.667239][T13607] debugfs: 'hsr0' already exists in 'hsr'
[  113.668209][T13607] Cannot create hsr debugfs directory
[  113.804518][T13607] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.929460][T13698] __nla_validate_parse: 17 callbacks suppressed
[  113.929500][T13698] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2776'.
[  114.037830][T13607] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.040116][T13700] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  114.097849][T13607] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.164339][T13607] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.275266][T13730] netlink: 136 bytes leftover after parsing attributes in process `syz.1.2786'.
[  114.290570][ T2148] bridge_slave_1: left allmulticast mode
[  114.290619][ T2148] bridge_slave_1: left promiscuous mode
[  114.291240][ T2148] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.294777][ T2148] bridge_slave_0: left allmulticast mode
[  114.294797][ T2148] bridge_slave_0: left promiscuous mode
[  114.294869][ T2148] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.410313][ T2148] bond1 (unregistering): (slave ip6gretap1): Removing an active aggregator
[  114.410519][ T2148] bond1 (unregistering): (slave ip6gretap1): Releasing backup interface
[  114.477895][ T2148] bond4 (unregistering): (slave gre1): Releasing backup interface
[  114.477944][ T2148] gre1 (unregistering): left promiscuous mode
[  114.638192][ T2148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  114.675774][ T2148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  114.705258][ T2148] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  114.776586][ T2148] bond0 (unregistering): Released all slaves
[  114.807554][ T2148] bond1 (unregistering): Released all slaves
[  114.839169][ T2148] bond2 (unregistering): Released all slaves
[  114.843694][ T2148] bond3 (unregistering): Released all slaves
[  114.874052][ T2148] bond4 (unregistering): Released all slaves
[  114.907395][ T2148] bond5 (unregistering): Released all slaves
[  114.911292][ T2148] bond6 (unregistering): Released all slaves
[  114.914671][ T2148] bond7 (unregistering): Released all slaves
[  114.943829][ T2148] bond8 (unregistering): Released all slaves
[  114.974323][ T2148] bond9 (unregistering): Released all slaves
[  115.008404][T13607] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  115.011555][T13607] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  115.014546][T13607] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  115.020374][T13607] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  115.058082][ T2148] tipc: Left network mode
[  115.098278][T13607] 8021q: adding VLAN 0 to HW filter on device bond0
[  115.165622][T13607] 8021q: adding VLAN 0 to HW filter on device team0
[  115.179829][ T5089] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.179885][ T5089] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.184537][  T609] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.184579][  T609] bridge0: port 2(bridge_slave_1) entered forwarding state
[  115.225273][   T52] Bluetooth: hci3: command tx timeout
[  115.430600][T13607] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.444877][T13607] veth0_vlan: entered promiscuous mode
[  115.802891][T13607] veth1_vlan: entered promiscuous mode
[  115.808055][T13607] veth0_macvtap: entered promiscuous mode
[  115.809007][T13607] veth1_macvtap: entered promiscuous mode
[  115.812237][T13607] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.813866][T13607] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.828913][  T232] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.828965][  T232] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.867266][  T232] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.867447][  T232] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.875301][ T2148] hsr_slave_0: left promiscuous mode
[  115.875728][ T2148] hsr_slave_1: left promiscuous mode
[  115.876031][ T2148] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  115.876047][ T2148] batman_adv: batadv0: Removing interface: batadv_slave_0
[  115.877460][ T2148] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  115.877473][ T2148] batman_adv: batadv0: Removing interface: batadv_slave_1
[  116.050145][ T2148] veth1_macvtap: left promiscuous mode
[  116.050841][ T2148] veth1_vlan: left promiscuous mode
[  116.050927][ T2148] veth0_vlan: left promiscuous mode
[  116.364822][  T609] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.364847][  T609] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.370665][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.371987][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.414925][T13831] fuse: Bad value for 'user_id'
[  116.414954][T13831] fuse: Bad value for 'user_id'
[  116.458339][T13837] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  116.479568][T13837] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2827'.
[  117.297210][T13889] fuse: Bad value for 'fd'
[  117.302412][   T52] Bluetooth: hci3: command tx timeout
[  117.399613][T13899] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  117.418419][T13899] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2854'.
[  117.517238][T13905] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2856'.
[  117.518849][T13905] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2856'.
[  117.522489][T13905] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2856'.
[  117.523928][T13905] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2856'.
[  117.731305][T13918] fuse: Bad value for 'fd'
[  117.835857][   T31] audit: type=1326 audit(117.810:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13927 comm="syz.4.2867" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  117.839288][   T31] audit: type=1326 audit(117.810:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13927 comm="syz.4.2867" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  117.840255][   T31] audit: type=1326 audit(117.810:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13927 comm="syz.4.2867" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=85 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  117.840270][   T31] audit: type=1326 audit(117.810:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13927 comm="syz.4.2867" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  117.926453][   T31] audit: type=1107 audit(117.900:122): pid=13937 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='U@y?U'
[  117.963044][T13944] xt_hashlimit: size too large, truncated to 1048576
[  117.964541][T13944] xt_hashlimit: invalid rate
[  118.539131][T13991] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2896'.
[  118.539854][T13991] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2896'.
[  118.906486][ T6543] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  118.913955][ T6543] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  118.916343][ T6543] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  118.926721][ T6543] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  118.934109][ T6543] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  119.044288][   T52] Bluetooth: hci3: unexpected cc 0x0809 length: 68 > 4
[  119.141088][T14019] chnl_net:caif_netlink_parms(): no params data found
[  119.169635][T14019] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.171046][T14019] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.172722][T14019] bridge_slave_0: entered allmulticast mode
[  119.174386][T14019] bridge_slave_0: entered promiscuous mode
[  119.176286][T14019] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.177679][T14019] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.179163][T14019] bridge_slave_1: entered allmulticast mode
[  119.179609][T14019] bridge_slave_1: entered promiscuous mode
[  119.192164][T14019] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  119.194891][T14019] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  119.214103][T14019] team0: Port device team_slave_0 added
[  119.216346][T14019] team0: Port device team_slave_1 added
[  119.282000][T14019] batman_adv: batadv0: Adding interface: batadv_slave_0
[  119.282026][T14019] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.282041][T14019] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.285528][T14019] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.285538][T14019] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.285551][T14019] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.302040][T14019] hsr_slave_0: entered promiscuous mode
[  119.304626][T14019] hsr_slave_1: entered promiscuous mode
[  119.377300][T14055] trusted_key: encrypted_key: insufficient parameters specified
[  119.615610][T14058] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  119.617427][T14060] fuse: Bad value for 'fd'
[  119.659007][T14019] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  119.662183][T14019] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.690662][T14070] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2926'.
[  119.692146][T14070] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2926'.
[  119.709480][T14019] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  119.711379][T14019] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.717131][T14070] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2926'.
[  119.717159][T14070] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2926'.
[  119.755386][T14019] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  119.758380][T14019] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.069898][T14019] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  120.069936][T14019] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.470581][T14019] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  120.475674][T14019] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  120.477053][T14019] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  120.481017][T14019] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  120.511558][T14019] 8021q: adding VLAN 0 to HW filter on device bond0
[  120.518670][T14019] 8021q: adding VLAN 0 to HW filter on device team0
[  120.524539][T13965] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.524574][T13965] bridge0: port 1(bridge_slave_0) entered forwarding state
[  120.529784][ T2148] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.529814][ T2148] bridge0: port 2(bridge_slave_1) entered forwarding state
[  120.629119][T14098] xt_CT: You must specify a L4 protocol and not use inversions on it
[  120.656726][T14019] 8021q: adding VLAN 0 to HW filter on device batadv0
[  120.673016][T14019] veth0_vlan: entered promiscuous mode
[  120.679590][T14019] veth1_vlan: entered promiscuous mode
[  120.700610][T14019] veth0_macvtap: entered promiscuous mode
[  120.704293][T14019] veth1_macvtap: entered promiscuous mode
[  120.716280][T14019] batman_adv: batadv0: Interface activated: batadv_slave_0
[  120.719671][T14019] batman_adv: batadv0: Interface activated: batadv_slave_1
[  120.720873][T14106] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  120.733244][   T41] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  120.733287][   T41] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  120.733311][   T41] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  120.733326][   T41] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  120.751350][T14109] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  120.798480][ T5089] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.798506][ T5089] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.813266][   T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.813292][   T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.869560][T14128] loop1: detected capacity change from 0 to 128
[  120.871092][T14128] ext4: Unknown parameter 'measure'
[  120.891821][T14128] loop1: detected capacity change from 0 to 4096
[  120.899100][T14128] EXT4-fs (loop1): Test dummy encryption mode enabled
[  120.906063][T14128] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.959106][T14128] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[  120.980618][T14137] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  120.983114][   T52] Bluetooth: hci2: command tx timeout
[  121.007087][T14019] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.055724][T14151] loop1: detected capacity change from 0 to 16
[  121.060937][T14151] erofs (device loop1): mounted with root inode @ nid 36.
[  121.063695][   T52] Bluetooth: hci3: command tx timeout
[  121.066273][T14154] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2954'.
[  121.591833][T14186] xt_CT: You must specify a L4 protocol and not use inversions on it
[  121.634985][T14194] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2969'.
[  121.635020][T14194] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2969'.
[  121.635326][T14194] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2969'.
[  121.635335][T14194] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2969'.
[  121.744637][T14212] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  121.827605][T14232] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[  121.837918][   T31] audit: type=1326 audit(121.810:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14235 comm="syz.2.2989" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8635b3a8 code=0x7ffc0000
[  121.838084][T14234] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  121.843390][   T31] audit: type=1326 audit(121.810:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14235 comm="syz.2.2989" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8635b3a8 code=0x7ffc0000
[  121.846805][   T31] audit: type=1326 audit(121.810:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14235 comm="syz.2.2989" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=431 compat=0 ip=0xffff8635b3a8 code=0x7ffc0000
[  121.850151][   T31] audit: type=1326 audit(121.810:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14235 comm="syz.2.2989" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8635b3a8 code=0x7ffc0000
[  121.855666][   T31] audit: type=1326 audit(121.810:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14235 comm="syz.2.2989" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8635b3a8 code=0x7ffc0000
[  121.933368][T14247] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2992'.
[  121.995721][T14255] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  122.074771][T14266] loop1: detected capacity change from 0 to 512
[  122.079267][T14266] EXT4-fs (loop1): Test dummy encryption mode enabled
[  122.080386][T14266] EXT4-fs (loop1): blocks per group (255) and clusters per group (8192) inconsistent
[  122.088554][T14266] loop1: detected capacity change from 0 to 1024
[  122.090573][T14266] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  122.092024][T14266] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  122.092050][T14266] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[  122.124915][T14269] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  122.533627][T14302] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  122.973221][T14331] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  124.774127][T14374] fuse: Bad value for 'rootmode'
[  125.246685][ T6543] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  125.248911][ T6543] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  125.250997][ T6543] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  125.255921][ T6543] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  125.258141][ T6543] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  125.284884][T14409] fuse: Bad value for 'fd'
[  125.347120][T14417] __nla_validate_parse: 3 callbacks suppressed
[  125.348326][  T609] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.348435][T14417] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3064'.
[  125.357425][T14417] team0: No ports can be present during mode change
[  125.435166][T14400] chnl_net:caif_netlink_parms(): no params data found
[  125.489130][T14400] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.491621][T14400] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.494291][T14400] bridge_slave_0: entered allmulticast mode
[  125.496595][T14400] bridge_slave_0: entered promiscuous mode
[  125.500878][T14400] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.502536][T14400] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.504242][T14400] bridge_slave_1: entered allmulticast mode
[  125.506052][T14400] bridge_slave_1: entered promiscuous mode
[  125.528298][T14400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  125.533367][T14400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  125.546653][T14400] team0: Port device team_slave_0 added
[  125.549274][T14400] team0: Port device team_slave_1 added
[  125.562556][T14400] batman_adv: batadv0: Adding interface: batadv_slave_0
[  125.563816][T14400] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.568429][T14400] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  125.570997][T14400] batman_adv: batadv0: Adding interface: batadv_slave_1
[  125.571006][T14400] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.571018][T14400] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  125.597747][T14400] hsr_slave_0: entered promiscuous mode
[  125.599774][T14400] hsr_slave_1: entered promiscuous mode
[  125.601168][T14400] debugfs: 'hsr0' already exists in 'hsr'
[  125.602216][T14400] Cannot create hsr debugfs directory
[  125.690549][ T2190] bond0: (slave bond_slave_0): interface is now down
[  125.690588][ T2190] bond0: (slave bond_slave_1): interface is now down
[  125.691862][ T2190] bond0: now running without any active interface!
[  125.693014][T14443] netlink: 'syz.3.3071': attribute type 10 has an invalid length.
[  125.699944][T14443] syz_tun: entered promiscuous mode
[  125.721376][T14443] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  125.724160][   T42] bond0: (slave syz_tun): interface is now down
[  125.724267][   T42] bond0: now running without any active interface!
[  125.747265][T14400] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  125.755028][T14400] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  125.759366][T14400] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  125.776667][T14400] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  126.044226][ T2427] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  126.044381][ T2427] ieee802154 phy0 wpan0: encryption failed: -22
[  126.154023][T14400] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.160673][T14400] 8021q: adding VLAN 0 to HW filter on device team0
[  126.186864][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.186907][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.190227][ T2190] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.190268][ T2190] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.281798][  T609] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.333235][  T609] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.346826][T14400] 8021q: adding VLAN 0 to HW filter on device batadv0
[  126.372181][  T609] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.377049][T14478] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  126.523999][T14400] veth0_vlan: entered promiscuous mode
[  126.525271][  T609] bridge_slave_1: left allmulticast mode
[  126.525300][  T609] bridge_slave_1: left promiscuous mode
[  126.525391][  T609] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.530845][  T609] bridge_slave_0: left allmulticast mode
[  126.531876][  T609] bridge_slave_0: left promiscuous mode
[  126.531986][  T609] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.781320][  T609] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  126.794700][  T609] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  126.834618][  T609] bond0 (unregistering): Released all slaves
[  126.839648][T14492] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  126.839969][T14493] netem: change failed
[  126.878520][T14507] infiniband syz0: set active
[  126.878552][T14507] infiniband syz0: added syz_tun
[  126.904898][T14400] veth1_vlan: entered promiscuous mode
[  126.910891][T14507] RDS/IB: syz0: added
[  126.911065][T14507] smc: adding ib device syz0 with port count 1
[  126.911106][T14507] smc:    ib device syz0 port 1 has pnetid SYZ0 (user defined)
[  127.013704][T14400] veth0_macvtap: entered promiscuous mode
[  127.023024][T14400] veth1_macvtap: entered promiscuous mode
[  127.140171][T14400] batman_adv: batadv0: Interface activated: batadv_slave_0
[  127.149500][T14400] batman_adv: batadv0: Interface activated: batadv_slave_1
[  127.158251][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  127.161495][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  127.165409][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  127.167262][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  127.302810][ T6543] Bluetooth: hci0: command tx timeout
[  127.359850][ T2148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.361388][ T2148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.398295][T14533] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3092'.
[  127.487620][   T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.487649][   T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.508601][   T31] audit: type=1326 audit(127.480:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14501 comm="syz.3.3088" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7fc00000
[  127.940951][  T609] hsr_slave_0: left promiscuous mode
[  127.942020][  T609] hsr_slave_1: left promiscuous mode
[  127.945930][  T609] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  127.946301][  T609] batman_adv: batadv0: Removing interface: batadv_slave_0
[  127.950457][  T609] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  127.950481][  T609] batman_adv: batadv0: Removing interface: batadv_slave_1
[  127.951326][T14563] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.951473][T14563] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.984637][  T609] veth1_macvtap: left promiscuous mode
[  127.984691][  T609] veth0_macvtap: left promiscuous mode
[  127.987785][  T609] veth1_vlan: left promiscuous mode
[  127.987852][  T609] veth0_vlan: left promiscuous mode
[  128.311063][T14588] netlink: 'syz.0.3109': attribute type 10 has an invalid length.
[  128.401733][  T609] team0 (unregistering): Port device team_slave_1 removed
[  128.425063][  T609] team0 (unregistering): Port device team_slave_0 removed
[  128.722699][T14604] netlink: 'syz.5.3115': attribute type 10 has an invalid length.
[  128.728246][T14588] syz_tun: entered promiscuous mode
[  128.730503][T14588] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  128.731532][T14598] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  128.740037][   T12] bond0: (slave bond_slave_0): interface is now down
[  128.740064][   T12] bond0: (slave bond_slave_1): interface is now down
[  128.744723][T14604] syz_tun: entered promiscuous mode
[  128.750730][T14604] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  128.754936][ T2190] bond0: (slave bond_slave_0): interface is now down
[  128.754964][ T2190] bond0: (slave bond_slave_1): interface is now down
[  128.754983][ T2190] bond0: (slave syz_tun): interface is now down
[  128.756003][ T2190] bond0: now running without any active interface!
[  128.758694][T14606] netlink: 1272 bytes leftover after parsing attributes in process `syz.4.3116'.
[  128.758708][T14606] openvswitch: netlink: Message has 7 unknown bytes.
[  128.815085][T14609] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3118'.
[  128.836645][T14609] 8021q: adding VLAN 0 to HW filter on device bond5
[  128.857503][T14609] bond5: (slave ip6gretap2): Enslaving as a backup interface with an up link
[  128.859195][T14609] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3118'.
[  128.933812][T14603] loop5: detected capacity change from 0 to 40427
[  128.941819][T14603] F2FS-fs (loop5): build fault injection rate: 26
[  128.942536][T14603] F2FS-fs (loop5): build fault injection type: 0x19
[  128.946156][   T42] bond5: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  128.950244][T14603] F2FS-fs (loop5): invalid crc value
[  128.951292][T14603] F2FS-fs (loop5): inject kmalloc in f2fs_kmalloc of f2fs_build_segment_manager+0x24c8/0x39c0
[  128.951342][T14603] F2FS-fs (loop5): Failed to initialize F2FS segment manager (-12)
[  129.008981][T14609] bond1 (unregistering): (slave ip6gretap1): Removing an active aggregator
[  129.011147][T14609] bond1 (unregistering): (slave ip6gretap1): Releasing backup interface
[  129.021220][T14611] IPv6: addrconf: prefix option has invalid lifetime
[  129.023898][T14611] IPv6: addrconf: prefix option has invalid lifetime
[  129.036371][T14609] bond1 (unregistering): Released all slaves
[  129.076269][ T2190] bond5: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  129.216832][T14640] fuse: Unknown parameter 'user_id00000000000000000000'
[  129.247102][T14627] loop5: detected capacity change from 0 to 2048
[  129.316853][T14655] syz_tun: entered allmulticast mode
[  129.380761][T14661] vlan2: entered allmulticast mode
[  129.381767][T14661] vlan1: entered allmulticast mode
[  129.382525][ T6543] Bluetooth: hci0: command tx timeout
[  129.383867][T14661] veth0_vlan: entered allmulticast mode
[  129.802585][T14679] fuse: Unknown parameter 'user_id00000000000000000000'
[  130.887112][  T609] bond0: (slave bond_slave_0): interface is now down
[  130.887143][  T609] bond0: (slave bond_slave_1): interface is now down
[  130.888870][  T609] bond0: now running without any active interface!
[  131.276901][T14706] fuse: Unknown parameter 'user_id00000000000000000000'
[  131.340914][T14666] Set syz1 is full, maxelem 65536 reached
[  131.463553][ T6543] Bluetooth: hci0: command tx timeout
[  131.484868][   T31] audit: type=1326 audit(131.460:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14727 comm="syz.3.3151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  131.484913][   T31] audit: type=1326 audit(131.460:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14727 comm="syz.3.3151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  131.491725][   T31] audit: type=1326 audit(131.460:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14727 comm="syz.3.3151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  131.496202][   T31] audit: type=1326 audit(131.460:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14727 comm="syz.3.3151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff8895b3dc code=0x7ffc0000
[  131.501399][   T31] audit: type=1326 audit(131.460:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14727 comm="syz.3.3151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffff88959a90 code=0x7ffc0000
[  131.507194][   T31] audit: type=1326 audit(131.470:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14727 comm="syz.3.3151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffff8895b44c code=0x7ffc0000
[  131.510762][   T31] audit: type=1326 audit(131.470:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14727 comm="syz.3.3151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff88959794 code=0x7ffc0000
[  131.510798][   T31] audit: type=1326 audit(131.470:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14727 comm="syz.3.3151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffff88959ccc code=0x7ffc0000
[  131.510821][   T31] audit: type=1326 audit(131.470:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14727 comm="syz.3.3151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  131.544510][T14732] fuse: Bad value for 'fd'
[  132.097004][T14633] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  132.097069][T14633] block device autoloading is deprecated and will be removed.
[  132.668469][T14773] overlayfs: failed to clone upperpath
[  132.941376][T14792] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  133.556073][ T6543] Bluetooth: hci0: command tx timeout
[  133.672068][T14814] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.672133][T14814] bridge0: port 1(bridge_slave_0) entered forwarding state
[  133.707915][T14829] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  133.733685][T14835] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3191'.
[  134.620892][T14870] loop5: detected capacity change from 0 to 512
[  134.627057][T14870] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  134.629583][T14870] EXT4-fs (loop5): blocks per group (95) and clusters per group (32768) inconsistent
[  134.695782][T14872] loop5: detected capacity change from 0 to 512
[  134.698358][T14872] ext4: Unknown parameter 'nouser_xattr'
[  134.762251][T14878] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3209'.
[  134.765377][T14878] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3209'.
[  134.767399][T14878] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3209'.
[  134.788903][T14880] input: syz1 as /devices/virtual/input/input10
[  135.112525][T14905] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3221'.
[  135.114725][T14905] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3221'.
[  135.116618][T14905] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3221'.
[  135.137482][T14908] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  135.828570][T14926] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  135.830454][T14926] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  136.731325][T14937] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3232'.
[  136.740821][T14937] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3232'.
[  136.741059][T14937] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3232'.
[  137.761551][   T31] audit: type=1326 audit(137.730:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14982 comm="syz.5.3250" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  137.780422][   T31] audit: type=1326 audit(137.750:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14982 comm="syz.5.3250" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  137.785554][   T31] audit: type=1326 audit(137.760:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14982 comm="syz.5.3250" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=143 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  137.822593][   T31] audit: type=1326 audit(137.770:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14982 comm="syz.5.3250" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  137.822645][   T31] audit: type=1326 audit(137.770:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14982 comm="syz.5.3250" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  137.881100][   T31] audit: type=1326 audit(137.850:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14994 comm="syz.5.3255" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  137.882750][   T31] audit: type=1326 audit(137.860:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14994 comm="syz.5.3255" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=75 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  137.884145][   T31] audit: type=1326 audit(137.860:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14994 comm="syz.5.3255" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  137.973302][T14997] overlayfs: failed to clone upperpath
[  138.162795][T15003] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  138.276643][T15006] loop5: detected capacity change from 0 to 32768
[  138.285472][T15006] (syz.5.3259,15006,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  138.286600][T15006] (syz.5.3259,15006,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  138.304318][T15006] JBD2: Ignoring recovery information on journal
[  138.328681][T15006] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  139.595758][T15035] sch_fq: defrate 6 ignored.
[  139.601085][T15036] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  139.767381][T14400] ocfs2: Unmounting device (7,5) on (node local)
[  140.609810][   T52] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  140.638113][   T52] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  140.640395][   T52] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  140.642071][   T52] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  140.643746][   T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  140.683827][   T31] audit: type=1326 audit(140.660:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15059 comm="syz.4.3277" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  140.684147][   T31] audit: type=1326 audit(140.660:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15059 comm="syz.4.3277" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaf15b3a8 code=0x7ffc0000
[  140.717117][T15064] __nla_validate_parse: 2 callbacks suppressed
[  140.718080][T15064] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3279'.
[  140.829526][T15068] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  140.965449][T15064] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3279'.
[  141.041232][T12487] bond0: (slave syz_tun): Releasing backup interface
[  141.674051][T15073] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  141.782266][T15084] tipc: Started in network mode
[  141.786473][T15084] tipc: Node identity 6a1eca061ebc, cluster identity 4711
[  141.786550][T15084] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  141.832510][T15084] syzkaller0: entered promiscuous mode
[  141.832540][T15084] syzkaller0: entered allmulticast mode
[  141.909311][T15084] tipc: Resetting bearer <eth:syzkaller0>
[  141.917164][T15083] tipc: Resetting bearer <eth:syzkaller0>
[  141.950436][T15083] tipc: Disabling bearer <eth:syzkaller0>
[  141.960882][T15051] chnl_net:caif_netlink_parms(): no params data found
[  142.075796][T15109] loop5: detected capacity change from 0 to 1024
[  142.100770][T15109] EXT4-fs: Ignoring removed i_version option
[  142.100811][T15109] EXT4-fs: inline encryption not supported
[  142.107915][T15109] EXT4-fs (loop5): Test dummy encryption mode enabled
[  142.140407][T15051] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.140447][T15051] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.140523][T15051] bridge_slave_0: entered allmulticast mode
[  142.148151][T15051] bridge_slave_0: entered promiscuous mode
[  142.149954][T15051] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.151482][T15051] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.153819][T15051] bridge_slave_1: entered allmulticast mode
[  142.155540][T15051] bridge_slave_1: entered promiscuous mode
[  142.159843][T15109] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.191171][T15109] EXT4-fs error (device loop5): ext4_iget_extra_inode:5104: inode #15: comm syz.5.3286: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  142.201671][T15051] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  142.204543][T15109] EXT4-fs error (device loop5): __ext4_remount:6740: comm syz.5.3286: Abort forced by user
[  142.204689][T15109] EXT4-fs (loop5): Remounting filesystem read-only
[  142.204697][T15109] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  142.216003][T15051] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  142.231838][T14400] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.246589][T15121] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3289'.
[  142.269646][T15101] xt_CONNSECMARK: invalid mode: 66
[  142.286008][T15121] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3289'.
[  142.290828][T15051] team0: Port device team_slave_0 added
[  142.310584][T15051] team0: Port device team_slave_1 added
[  142.427807][T15051] batman_adv: batadv0: Adding interface: batadv_slave_0
[  142.427837][T15051] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.427861][T15051] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  142.428398][T15051] batman_adv: batadv0: Adding interface: batadv_slave_1
[  142.428411][T15051] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.428430][T15051] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  142.663729][   T52] Bluetooth: hci2: command tx timeout
[  142.706308][T15051] hsr_slave_0: entered promiscuous mode
[  142.709411][T15051] hsr_slave_1: entered promiscuous mode
[  142.881304][T15051] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.942081][T15051] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.997876][T15051] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.357894][T15051] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.512222][T15051] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  143.519275][T15051] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  143.523095][T15051] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  143.526586][T15051] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  143.906225][T15051] 8021q: adding VLAN 0 to HW filter on device bond0
[  143.930708][T15051] 8021q: adding VLAN 0 to HW filter on device team0
[  143.933920][  T609] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.933970][  T609] bridge0: port 1(bridge_slave_0) entered forwarding state
[  143.962024][  T609] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.962065][  T609] bridge0: port 2(bridge_slave_1) entered forwarding state
[  144.791866][   T52] Bluetooth: hci2: command tx timeout
[  144.931325][T15051] 8021q: adding VLAN 0 to HW filter on device batadv0
[  144.978968][T15051] veth0_vlan: entered promiscuous mode
[  144.981615][T15051] veth1_vlan: entered promiscuous mode
[  144.989693][T15051] veth0_macvtap: entered promiscuous mode
[  144.991737][T15051] veth1_macvtap: entered promiscuous mode
[  144.997561][T15051] batman_adv: batadv0: Interface activated: batadv_slave_0
[  144.999824][T15051] batman_adv: batadv0: Interface activated: batadv_slave_1
[  145.071323][T14930] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.084608][   T42] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.084788][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.084802][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.084895][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.084907][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.084996][   T42] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.085115][   T42] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  145.797464][T15278] loop0: detected capacity change from 0 to 1024
[  145.799014][T15278] hfsplus: Unknown parameter '#'
[  145.984682][T15289] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3328'.
[  145.995456][T15289] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3328'.
[  146.160971][T15305] loop0: detected capacity change from 0 to 512
[  146.164787][T15305] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  146.192994][T15305] EXT4-fs (loop0): 1 truncate cleaned up
[  146.193862][T15305] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.695980][T15321] syzkaller0: entered promiscuous mode
[  146.697839][T15321] syzkaller0: entered allmulticast mode
[  146.766117][T15324] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3340'.
[  146.842366][   T52] Bluetooth: hci2: command tx timeout
[  146.872911][T15324] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3340'.
[  148.276707][T15367] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3355'.
[  148.310667][T15367] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3355'.
[  149.027579][   T52] Bluetooth: hci2: command tx timeout
[  149.661960][T15408] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3370'.
[  149.668854][T15051] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.721902][T15411] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  149.722465][T15411] syzkaller0: entered promiscuous mode
[  149.722475][T15411] syzkaller0: entered allmulticast mode
[  149.728106][T15411] tipc: Resetting bearer <eth:syzkaller0>
[  149.730058][T15409] tipc: Resetting bearer <eth:syzkaller0>
[  149.735837][T15409] tipc: Disabling bearer <eth:syzkaller0>
[  149.791609][T15416] bridge: RTM_NEWNEIGH with invalid ether address
[  149.970492][T15435] syz.4.3380 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  150.194733][T15437] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  150.194821][T15437] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  150.373471][   T31] kauditd_printk_skb: 20 callbacks suppressed
[  150.374678][   T31] audit: type=1326 audit(150.350:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15441 comm="syz.3.3382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  150.379629][   T31] audit: type=1326 audit(150.350:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15441 comm="syz.3.3382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  150.383332][   T31] audit: type=1326 audit(150.350:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15441 comm="syz.3.3382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  150.386802][   T31] audit: type=1326 audit(150.350:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15441 comm="syz.3.3382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  150.389930][   T31] audit: type=1326 audit(150.350:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15441 comm="syz.3.3382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  150.393309][   T31] audit: type=1326 audit(150.350:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15441 comm="syz.3.3382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  150.396856][   T31] audit: type=1326 audit(150.350:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15441 comm="syz.3.3382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  150.400030][   T31] audit: type=1326 audit(150.350:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15441 comm="syz.3.3382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  150.403424][   T31] audit: type=1326 audit(150.350:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15441 comm="syz.3.3382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=174 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  150.406885][   T31] audit: type=1326 audit(150.350:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15441 comm="syz.3.3382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8895b3a8 code=0x7ffc0000
[  151.158579][T15453] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  151.159685][T15453] syzkaller0: entered promiscuous mode
[  151.159698][T15453] syzkaller0: entered allmulticast mode
[  151.194964][T15453] tipc: Resetting bearer <eth:syzkaller0>
[  151.197792][T15452] tipc: Resetting bearer <eth:syzkaller0>
[  151.208867][T15452] tipc: Disabling bearer <eth:syzkaller0>
[  153.273038][T15485] ==================================================================
[  153.273057][T15485] BUG: KASAN: slab-use-after-free in __xfrm_state_insert+0x794/0x11a4
[  153.273076][T15485] Read of size 1 at addr ffff0000f1ac5430 by task syz.3.3395/15485
[  153.273083][T15485] 
[  153.273087][T15485] CPU: 0 UID: 0 PID: 15485 Comm: syz.3.3395 Not tainted syzkaller #0 PREEMPT 
[  153.273095][T15485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[  153.273100][T15485] Call trace:
[  153.273102][T15485]  show_stack+0x2c/0x3c (C)
[  153.273113][T15485]  __dump_stack+0x30/0x40
[  153.273121][T15485]  dump_stack_lvl+0xd8/0x12c
[  153.273128][T15485]  print_address_description+0xa8/0x238
[  153.273135][T15485]  print_report+0x68/0x84
[  153.273140][T15485]  kasan_report+0xb0/0x110
[  153.273151][T15485]  __asan_report_load1_noabort+0x20/0x2c
[  153.273157][T15485]  __xfrm_state_insert+0x794/0x11a4
[  153.273163][T15485]  xfrm_state_insert+0x5c/0x78
[  153.273169][T15485]  ipcomp6_init_state+0x4b8/0x778
[  153.273175][T15485]  __xfrm_init_state+0x8c4/0x12b8
[  153.273182][T15485]  xfrm_add_sa+0x21f4/0x310c
[  153.273192][T15485]  xfrm_user_rcv_msg+0x588/0x7c4
[  153.273201][T15485]  netlink_rcv_skb+0x220/0x3fc
[  153.273211][T15485]  xfrm_netlink_rcv+0x80/0x9c
[  153.273220][T15485]  netlink_unicast+0x694/0x8c4
[  153.273228][T15485]  netlink_sendmsg+0x648/0x930
[  153.273238][T15485]  ____sys_sendmsg+0x490/0x7b8
[  153.273246][T15485]  ___sys_sendmsg+0x204/0x278
[  153.273253][T15485]  __arm64_sys_sendmsg+0x184/0x238
[  153.273261][T15485]  invoke_syscall+0x98/0x254
[  153.273268][T15485]  el0_svc_common+0x130/0x23c
[  153.273275][T15485]  do_el0_svc+0x48/0x58
[  153.273282][T15485]  el0_svc+0x5c/0x254
[  153.273289][T15485]  el0t_64_sync_handler+0x84/0x12c
[  153.273295][T15485]  el0t_64_sync+0x198/0x19c
[  153.273301][T15485] 
[  153.273302][T15485] Allocated by task 13991:
[  153.273305][T15485]  kasan_save_track+0x40/0x78
[  153.273314][T15485]  kasan_save_alloc_info+0x44/0x54
[  153.273319][T15485]  __kasan_slab_alloc+0x70/0x88
[  153.273327][T15485]  kmem_cache_alloc_noprof+0x238/0x3e8
[  153.273336][T15485]  xfrm_state_alloc+0x2c/0x264
[  153.273340][T15485]  __find_acq_core+0x720/0x1540
[  153.273346][T15485]  xfrm_find_acq+0x94/0xcc
[  153.273351][T15485]  xfrm_alloc_userspi+0x52c/0x9c8
[  153.273359][T15485]  xfrm_user_rcv_msg+0x588/0x7c4
[  153.273368][T15485]  netlink_rcv_skb+0x220/0x3fc
[  153.273376][T15485]  xfrm_netlink_rcv+0x80/0x9c
[  153.273384][T15485]  netlink_unicast+0x694/0x8c4
[  153.273392][T15485]  netlink_sendmsg+0x648/0x930
[  153.273400][T15485]  ____sys_sendmsg+0x490/0x7b8
[  153.273406][T15485]  ___sys_sendmsg+0x204/0x278
[  153.273413][T15485]  __arm64_sys_sendmsg+0x184/0x238
[  153.273419][T15485]  invoke_syscall+0x98/0x254
[  153.273426][T15485]  el0_svc_common+0x130/0x23c
[  153.273432][T15485]  do_el0_svc+0x48/0x58
[  153.273438][T15485]  el0_svc+0x5c/0x254
[  153.273442][T15485]  el0t_64_sync_handler+0x84/0x12c
[  153.273447][T15485]  el0t_64_sync+0x198/0x19c
[  153.273451][T15485] 
[  153.273453][T15485] Freed by task 6878:
[  153.273456][T15485]  kasan_save_track+0x40/0x78
[  153.273463][T15485]  kasan_save_free_info+0x58/0x70
[  153.273468][T15485]  __kasan_slab_free+0x74/0x98
[  153.273476][T15485]  kmem_cache_free+0x184/0x550
[  153.273485][T15485]  xfrm_state_gc_task+0x468/0x560
[  153.273491][T15485]  process_one_work+0x7e8/0x155c
[  153.273498][T15485]  worker_thread+0x958/0xed8
[  153.273504][T15485]  kthread+0x5fc/0x75c
[  153.273509][T15485]  ret_from_fork+0x10/0x20
[  153.273517][T15485] 
[  153.273518][T15485] The buggy address belongs to the object at ffff0000f1ac5100
[  153.273518][T15485]  which belongs to the cache xfrm_state of size 928
[  153.273523][T15485] The buggy address is located 816 bytes inside of
[  153.273523][T15485]  freed 928-byte region [ffff0000f1ac5100, ffff0000f1ac54a0)
[  153.273529][T15485] 
[  153.273531][T15485] The buggy address belongs to the physical page:
[  153.273534][T15485] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff0000f1ac4cc0 pfn:0x131ac4
[  153.273541][T15485] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  153.273545][T15485] flags: 0x5ffc00000000040(head|node=0|zone=2|lastcpupid=0x7ff)
[  153.273552][T15485] page_type: f5(slab)
[  153.273557][T15485] raw: 05ffc00000000040 ffff0000c30c2b40 dead000000000122 0000000000000000
[  153.273563][T15485] raw: ffff0000f1ac4cc0 00000000800f000d 00000000f5000000 0000000000000000
[  153.273568][T15485] head: 05ffc00000000040 ffff0000c30c2b40 dead000000000122 0000000000000000
[  153.273573][T15485] head: ffff0000f1ac4cc0 00000000800f000d 00000000f5000000 0000000000000000
[  153.273578][T15485] head: 05ffc00000000002 fffffdffc3c6b101 00000000ffffffff 00000000ffffffff
[  153.273583][T15485] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  153.273587][T15485] page dumped because: kasan: bad access detected
[  153.273589][T15485] 
[  153.273591][T15485] Memory state around the buggy address:
[  153.273594][T15485]  ffff0000f1ac5300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  153.273598][T15485]  ffff0000f1ac5380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  153.273602][T15485] >ffff0000f1ac5400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  153.273605][T15485]                                      ^
[  153.273608][T15485]  ffff0000f1ac5480: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc
[  153.273612][T15485]  ffff0000f1ac5500: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[  153.273615][T15485] ==================================================================
[  153.273638][T15485] Disabling lock debugging due to kernel taint
[  153.275889][T15485] netlink: 64 bytes leftover after parsing attributes in process `syz.3.3395'.